Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-47913 (GCVE-0-2025-47913)
Vulnerability from cvelistv5 – Published: 2025-11-13 21:29 – Updated: 2025-12-16 16:43- CWE-703 - Improper Handling of Exceptional Conditions
| Vendor | Product | Version | |
|---|---|---|---|
| golang.org/x/crypto | golang.org/x/crypto/ssh/agent |
Affected:
0 , < 0.43.0
(semver)
|
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2025-47913",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-11-13T21:47:44.206349Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-11-13T21:47:50.864Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "golang.org/x/crypto/ssh/agent",
"product": "golang.org/x/crypto/ssh/agent",
"programRoutines": [
{
"name": "client.SignWithFlags"
},
{
"name": "client.List"
},
{
"name": "agentKeyringSigner.Sign"
},
{
"name": "agentKeyringSigner.SignWithAlgorithm"
},
{
"name": "client.Sign"
},
{
"name": "client.Signers"
}
],
"vendor": "golang.org/x/crypto",
"versions": [
{
"lessThan": "0.43.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Jakub Ciolek"
},
{
"lang": "en",
"value": "Nicola Murino"
}
],
"descriptions": [
{
"lang": "en",
"value": "SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-703: Improper Handling of Exceptional Conditions",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-16T16:43:43.633Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/cl/700295"
},
{
"url": "https://go.dev/issue/75178"
},
{
"url": "https://github.com/advisories/GHSA-56w8-48fp-6mgv"
},
{
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"title": "Potential denial of service in golang.org/x/crypto/ssh/agent"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2025-47913",
"datePublished": "2025-11-13T21:29:39.907Z",
"dateReserved": "2025-05-13T23:31:29.597Z",
"dateUpdated": "2025-12-16T16:43:43.633Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-47913",
"date": "2026-06-30",
"epss": "0.00579",
"percentile": "0.43259"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-47913\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2025-11-13T22:15:51.280\",\"lastModified\":\"2026-06-17T09:28:50.357\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"golang.org/x/crypto\",\"product\":\"golang.org/x/crypto/ssh/agent\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"golang.org/x/crypto/ssh/agent\",\"programRoutines\":[{\"name\":\"client.SignWithFlags\"},{\"name\":\"client.List\"},{\"name\":\"agentKeyringSigner.Sign\"},{\"name\":\"agentKeyringSigner.SignWithAlgorithm\"},{\"name\":\"client.Sign\"},{\"name\":\"client.Signers\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"0.43.0\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2025-11-13T21:47:44.206349Z\",\"id\":\"CVE-2025-47913\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-617\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:go:ssh:*:*:*:*:*:go:*:*\",\"versionEndExcluding\":\"0.43.0\",\"matchCriteriaId\":\"8CC7C462-0240-4D4B-B289-18AFF9D2BBF5\"}]}]}],\"references\":[{\"url\":\"https://github.com/advisories/GHSA-56w8-48fp-6mgv\",\"source\":\"security@golang.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://go.dev/cl/700295\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/75178\",\"source\":\"security@golang.org\",\"tags\":[\"Exploit\",\"Issue Tracking\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2025-4116\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-47913\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-11-13T21:47:44.206349Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-11-13T21:47:40.788Z\"}}], \"cna\": {\"title\": \"Potential denial of service in golang.org/x/crypto/ssh/agent\", \"credits\": [{\"lang\": \"en\", \"value\": \"Jakub Ciolek\"}, {\"lang\": \"en\", \"value\": \"Nicola Murino\"}], \"affected\": [{\"vendor\": \"golang.org/x/crypto\", \"product\": \"golang.org/x/crypto/ssh/agent\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"0.43.0\", \"versionType\": \"semver\"}], \"packageName\": \"golang.org/x/crypto/ssh/agent\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"client.SignWithFlags\"}, {\"name\": \"client.List\"}, {\"name\": \"agentKeyringSigner.Sign\"}, {\"name\": \"agentKeyringSigner.SignWithAlgorithm\"}, {\"name\": \"client.Sign\"}, {\"name\": \"client.Signers\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/700295\"}, {\"url\": \"https://go.dev/issue/75178\"}, {\"url\": \"https://github.com/advisories/GHSA-56w8-48fp-6mgv\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2025-4116\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-703: Improper Handling of Exceptional Conditions\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2025-12-16T16:43:43.633Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-47913\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-12-16T16:43:43.633Z\", \"dateReserved\": \"2025-05-13T23:31:29.597Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2025-11-13T21:29:39.907Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
OPENSUSE-SU-2026:20305-1
Vulnerability from csaf_opensuse - Published: 2026-03-03 16:13 - Updated: 2026-03-03 16:13| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\nChanges in podman:\n\n- Add symlink to catatonit in /usr/libexec/podman (bsc#1248988)\n\n- CVE-2025-47914: Fixed golang.org/x/crypto/ssh/agent: non validated message size can cause a panic due to an out of bounds read (bsc#1253993)\n- CVE-2025-47913: Fixed golang.org/x/crypto/ssh/agent: client process termination when receiving an unexpected message type in response to a key listing or signing request (bsc#1253542):\n\n- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: Fixed runc: Container breakouts by bypassing runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1252376):\n- CVE-2025-9566: Fixed that podman kube play command may overwrite host files (bsc#1249154):\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-343",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20305-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1248988",
"url": "https://bugzilla.suse.com/1248988"
},
{
"category": "self",
"summary": "SUSE Bug 1249154",
"url": "https://bugzilla.suse.com/1249154"
},
{
"category": "self",
"summary": "SUSE Bug 1252376",
"url": "https://bugzilla.suse.com/1252376"
},
{
"category": "self",
"summary": "SUSE Bug 1253542",
"url": "https://bugzilla.suse.com/1253542"
},
{
"category": "self",
"summary": "SUSE Bug 1253993",
"url": "https://bugzilla.suse.com/1253993"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47914 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-6032 page",
"url": "https://www.suse.com/security/cve/CVE-2025-6032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-9566 page",
"url": "https://www.suse.com/security/cve/CVE-2025-9566/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2026-03-03T16:13:34Z",
"generator": {
"date": "2026-03-03T16:13:34Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:20305-1",
"initial_release_date": "2026-03-03T16:13:34Z",
"revision_history": [
{
"date": "2026-03-03T16:13:34Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.4.1.aarch64",
"product": {
"name": "podman-5.4.2-160000.4.1.aarch64",
"product_id": "podman-5.4.2-160000.4.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.4.1.aarch64",
"product": {
"name": "podman-remote-5.4.2-160000.4.1.aarch64",
"product_id": "podman-remote-5.4.2-160000.4.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.4.1.aarch64",
"product": {
"name": "podmansh-5.4.2-160000.4.1.aarch64",
"product_id": "podmansh-5.4.2-160000.4.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-5.4.2-160000.4.1.noarch",
"product": {
"name": "podman-docker-5.4.2-160000.4.1.noarch",
"product_id": "podman-docker-5.4.2-160000.4.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.4.1.ppc64le",
"product": {
"name": "podman-5.4.2-160000.4.1.ppc64le",
"product_id": "podman-5.4.2-160000.4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.4.1.ppc64le",
"product": {
"name": "podman-remote-5.4.2-160000.4.1.ppc64le",
"product_id": "podman-remote-5.4.2-160000.4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.4.1.ppc64le",
"product": {
"name": "podmansh-5.4.2-160000.4.1.ppc64le",
"product_id": "podmansh-5.4.2-160000.4.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.4.1.s390x",
"product": {
"name": "podman-5.4.2-160000.4.1.s390x",
"product_id": "podman-5.4.2-160000.4.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.4.1.s390x",
"product": {
"name": "podman-remote-5.4.2-160000.4.1.s390x",
"product_id": "podman-remote-5.4.2-160000.4.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.4.1.s390x",
"product": {
"name": "podmansh-5.4.2-160000.4.1.s390x",
"product_id": "podmansh-5.4.2-160000.4.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.4.1.x86_64",
"product": {
"name": "podman-5.4.2-160000.4.1.x86_64",
"product_id": "podman-5.4.2-160000.4.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.4.1.x86_64",
"product": {
"name": "podman-remote-5.4.2-160000.4.1.x86_64",
"product_id": "podman-remote-5.4.2-160000.4.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.4.1.x86_64",
"product": {
"name": "podmansh-5.4.2-160000.4.1.x86_64",
"product_id": "podmansh-5.4.2-160000.4.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64"
},
"product_reference": "podman-5.4.2-160000.4.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le"
},
"product_reference": "podman-5.4.2-160000.4.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x"
},
"product_reference": "podman-5.4.2-160000.4.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64"
},
"product_reference": "podman-5.4.2-160000.4.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-5.4.2-160000.4.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch"
},
"product_reference": "podman-docker-5.4.2-160000.4.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64"
},
"product_reference": "podmansh-5.4.2-160000.4.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le"
},
"product_reference": "podmansh-5.4.2-160000.4.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x"
},
"product_reference": "podmansh-5.4.2-160000.4.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
},
"product_reference": "podmansh-5.4.2-160000.4.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:13:34Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
},
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:13:34Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-47913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47913"
}
],
"notes": [
{
"category": "general",
"text": "SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47913",
"url": "https://www.suse.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "SUSE Bug 1253506 for CVE-2025-47913",
"url": "https://bugzilla.suse.com/1253506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:13:34Z",
"details": "important"
}
],
"title": "CVE-2025-47913"
},
{
"cve": "CVE-2025-47914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47914"
}
],
"notes": [
{
"category": "general",
"text": "SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47914",
"url": "https://www.suse.com/security/cve/CVE-2025-47914"
},
{
"category": "external",
"summary": "SUSE Bug 1253967 for CVE-2025-47914",
"url": "https://bugzilla.suse.com/1253967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:13:34Z",
"details": "moderate"
}
],
"title": "CVE-2025-47914"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:13:34Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:13:34Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
},
{
"cve": "CVE-2025-6032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-6032"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-6032",
"url": "https://www.suse.com/security/cve/CVE-2025-6032"
},
{
"category": "external",
"summary": "SUSE Bug 1245320 for CVE-2025-6032",
"url": "https://bugzilla.suse.com/1245320"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:13:34Z",
"details": "important"
}
],
"title": "CVE-2025-6032"
},
{
"cve": "CVE-2025-9566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-9566"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file.\n\nBinary-Affected: podman\nUpstream-version-introduced: v4.0.0\nUpstream-version-fixed: v5.6.1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-9566",
"url": "https://www.suse.com/security/cve/CVE-2025-9566"
},
{
"category": "external",
"summary": "SUSE Bug 1249154 for CVE-2025-9566",
"url": "https://bugzilla.suse.com/1249154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.s390x",
"openSUSE Leap 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:13:34Z",
"details": "important"
}
],
"title": "CVE-2025-9566"
}
]
}
OPENSUSE-SU-2026:20351-1
Vulnerability from csaf_opensuse - Published: 2026-03-12 13:46 - Updated: 2026-03-12 13:46| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:amazon-ssm-agent-3.3.2299.0-160000.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:amazon-ssm-agent-3.3.2299.0-160000.3.1.x86_64 | — |
Vendor Fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for amazon-ssm-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for amazon-ssm-agent fixes the following issues:\n\n- CVE-2025-47913: client process termination when receiving an unexpected message type in response to a key listing or\n signing request (bsc#1253611).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-375",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20351-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1253611",
"url": "https://bugzilla.suse.com/1253611"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47913/"
}
],
"title": "Security update for amazon-ssm-agent",
"tracking": {
"current_release_date": "2026-03-12T13:46:52Z",
"generator": {
"date": "2026-03-12T13:46:52Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:20351-1",
"initial_release_date": "2026-03-12T13:46:52Z",
"revision_history": [
{
"date": "2026-03-12T13:46:52Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "amazon-ssm-agent-3.3.2299.0-160000.3.1.aarch64",
"product": {
"name": "amazon-ssm-agent-3.3.2299.0-160000.3.1.aarch64",
"product_id": "amazon-ssm-agent-3.3.2299.0-160000.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "amazon-ssm-agent-3.3.2299.0-160000.3.1.x86_64",
"product": {
"name": "amazon-ssm-agent-3.3.2299.0-160000.3.1.x86_64",
"product_id": "amazon-ssm-agent-3.3.2299.0-160000.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "amazon-ssm-agent-3.3.2299.0-160000.3.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:amazon-ssm-agent-3.3.2299.0-160000.3.1.aarch64"
},
"product_reference": "amazon-ssm-agent-3.3.2299.0-160000.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "amazon-ssm-agent-3.3.2299.0-160000.3.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:amazon-ssm-agent-3.3.2299.0-160000.3.1.x86_64"
},
"product_reference": "amazon-ssm-agent-3.3.2299.0-160000.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-47913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47913"
}
],
"notes": [
{
"category": "general",
"text": "SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:amazon-ssm-agent-3.3.2299.0-160000.3.1.aarch64",
"openSUSE Leap 16.0:amazon-ssm-agent-3.3.2299.0-160000.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47913",
"url": "https://www.suse.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "SUSE Bug 1253506 for CVE-2025-47913",
"url": "https://bugzilla.suse.com/1253506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:amazon-ssm-agent-3.3.2299.0-160000.3.1.aarch64",
"openSUSE Leap 16.0:amazon-ssm-agent-3.3.2299.0-160000.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:amazon-ssm-agent-3.3.2299.0-160000.3.1.aarch64",
"openSUSE Leap 16.0:amazon-ssm-agent-3.3.2299.0-160000.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-12T13:46:52Z",
"details": "important"
}
],
"title": "CVE-2025-47913"
}
]
}
RHSA-2025:22743
Vulnerability from csaf_redhat - Published: 2025-12-04 09:52 - Updated: 2026-07-01 00:23A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64 | — |
Workaround
|
A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Builds 1.6.1",
"title": "Topic"
},
{
"category": "general",
"text": "Releases of Red Hat OpenShift Builds 1.6.1",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:22743",
"url": "https://access.redhat.com/errata/RHSA-2025:22743"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47913",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-58183",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/builds_for_red_hat_openshift/1.6",
"url": "https://docs.redhat.com/en/documentation/builds_for_red_hat_openshift/1.6"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_22743.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Builds 1.6.1",
"tracking": {
"current_release_date": "2026-07-01T00:23:21+00:00",
"generator": {
"date": "2026-07-01T00:23:21+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2025:22743",
"initial_release_date": "2025-12-04T09:52:50+00:00",
"revision_history": [
{
"date": "2025-12-04T09:52:50+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-04T09:52:57+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:23:21+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Builds 1.6.5",
"product": {
"name": "Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_builds:1.6::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Builds"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-controller-rhel9@sha256%3A8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764897"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-git-cloner-rhel9@sha256%3Aa67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-bundler-rhel9@sha256%3Ae43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764750"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-processing-rhel9@sha256%3Ab52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764462"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-rhel9-operator@sha256%3Ac6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764754130"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-operator-bundle@sha256%3Ad7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764836230"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-rhel9@sha256%3Af7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764687373"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-webhook-rhel9@sha256%3A29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764687248"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-waiters-rhel9@sha256%3A4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764767096"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-webhook-rhel9@sha256%3Ad4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73?arch=amd64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764623"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-controller-rhel9@sha256%3Afc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764897"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-git-cloner-rhel9@sha256%3A288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-bundler-rhel9@sha256%3A05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764750"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-processing-rhel9@sha256%3A391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764462"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-rhel9-operator@sha256%3A29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764754130"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-rhel9@sha256%3A1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764687373"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-webhook-rhel9@sha256%3Aee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764687248"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-waiters-rhel9@sha256%3A74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764767096"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-webhook-rhel9@sha256%3A77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e?arch=arm64\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764623"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-controller-rhel9@sha256%3A395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764897"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-git-cloner-rhel9@sha256%3Ac4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-bundler-rhel9@sha256%3A8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764750"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-processing-rhel9@sha256%3A0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764462"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-rhel9-operator@sha256%3Aaf94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764754130"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-rhel9@sha256%3A22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764687373"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-webhook-rhel9@sha256%3A585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764687248"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-waiters-rhel9@sha256%3A97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764767096"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-webhook-rhel9@sha256%3A7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764623"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-controller-rhel9@sha256%3A8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764897"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-git-cloner-rhel9@sha256%3A51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-bundler-rhel9@sha256%3A6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764750"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-image-processing-rhel9@sha256%3Aa68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764462"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-rhel9-operator@sha256%3Ae6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764754130"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-rhel9@sha256%3Af3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764687373"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-shared-resource-webhook-rhel9@sha256%3A9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764687248"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-waiters-rhel9@sha256%3A49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764767096"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x",
"product": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x",
"product_id": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-builds-webhook-rhel9@sha256%3A23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757?arch=s390x\u0026repository_url=registry.redhat.io/openshift-builds\u0026tag=1.6.1-1764764623"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64 as a component of Red Hat OpenShift Builds 1.6.5",
"product_id": "Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64"
},
"product_reference": "registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64",
"relates_to_product_reference": "Red Hat OpenShift Builds 1.6.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-04T09:52:50+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.6.0 upgrades to to 1.6.1",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:22743"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-58183",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-29T23:01:50.573951+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2407258"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted GNU tar pax 1.0 archive with the application using the archive/tar package. Additionally, this issue can cause the Go application to allocate a large amount of memory, eventually leading to an out-of-memory condition and resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "RHBZ#2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58183"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://go.dev/cl/709861",
"url": "https://go.dev/cl/709861"
},
{
"category": "external",
"summary": "https://go.dev/issue/75677",
"url": "https://go.dev/issue/75677"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI",
"url": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4014",
"url": "https://pkg.go.dev/vuln/GO-2025-4014"
}
],
"release_date": "2025-10-29T22:10:14.376000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-04T09:52:50+00:00",
"details": "It is recommended that existing users of Red Hat OpenShift Builds 1.6.0 upgrades to to 1.6.1",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:22743"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:395818192d16d4d5bd33c6858ed83162423258a2e96554f142f5e8695f47b909_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e21d625630488801297b2a1608d4b36170a84861f13b699ae6ee83d116029ff_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:8e676677a0c02b23f8fadf3e96a6cc0329ac5758087d7413011d3adb5e40123b_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-controller-rhel9@sha256:fc0728590aef2d02281f8315213937d2b7f9686261475e3f1c6029f2d0a36ec7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:288a32807d964dc2f5800dd659ac6f52e97056c6333714305a931027e9650d07_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:51a9ba478afe04d21e08aabef4dd42dd9edc5dd6c94f6d8debff706b6c383e81_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:a67a377cebc64f733e406ac1e8700618a4f4ce21a67acd90650e5c260eed8385_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-git-cloner-rhel9@sha256:c4ff0ed2b70cd6385414bcec5e235f0086d5c040e98cb83f37b8811670eb43f9_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:05877af25bdf805f858a8e7326074e9af79da5d8a78a9145e8eba8c9fd4200e7_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:6eccdb53987e2a35b925e0fa6e7e0a5576b2591e3402f33ec2162da01637e86e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:8c6aada94d75445b65fcfda86e0639cbd3bc06d2c96c1639442d4a6c1181bdcc_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-bundler-rhel9@sha256:e43e8e0411d71b6e968332c5be156f045cb27b6e183b04c0f6e57c4655740aa9_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:0b56507d8d8ac4474f1fdc66081d62005350a451b8b73ee1759acf996f7afac2_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:391c399c72d1b2154968a76fbe2c168eba92ccae154612d01bc132854b2ac5ac_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:a68e3d9055d17e2732cf14d6acc3bd0018eae883471041e3a77e66e7c985cf27_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-image-processing-rhel9@sha256:b52bbba7ac8e0146bababeba7e960c94701c9c91880beab6ecaf53b68c033309_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-operator-bundle@sha256:d7559752af22bbde1b5753b2d0f5fe88bf8564f5be92a01babdf13b96074adbd_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:29f639a9a4666bfbaf1e00ac9ae4edd357cd279c770bade500e2131dd5d1bdb6_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:af94cda478224ad95dee05bf1c70267b17ccafae5b59e57265ec93addc7eac93_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:c6ad655cd4cfccb1ce94c83f80eb33746cb899a7da78485bc581071c83747126_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-rhel9-operator@sha256:e6dac113de983ddcf97eb79afb8badc77ce79885c45855c97da37ce557e8fb19_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:1d6fe7304c89863935f1f128c354225d1d2962ffa5927792daac7f2db89b3eb5_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:22abb2c65345ce4485090b489022c2aced9041a8a36df0c393993c5981221592_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f3569c63b70cf030260a15ef955c20a9aa99adc5b55937d22e33b2b473d96070_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-rhel9@sha256:f7e63c479267d3aff7439cc7c8e33cf49cb2ec65ad346c859244baead109943d_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:29d644b08a2ec4a1c5586fc3950aa61ee2df6d4bd961b5a51e7098827f29cc95_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:585e73085d2b96d3da81c6b467830d279ef63f8689a27dae5e3ae7d4d32a51e1_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:9ef68867ac0b3b993028f02dc4304d6270a8c6f27a85881f978a10fa59e2146e_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-shared-resource-webhook-rhel9@sha256:ee92e793aaf66e7bdcf507af951e198c45bd9c309992d953535acada33673221_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:4639c8447a2d5f5717cd1c28e2bbceee31b8913f29fe6066916efa66573a4752_amd64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:49616253d468bbad0598b6b3d74527de8219edbbace4b8fb3a6c2a4402645595_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:74dc1894ffbffee0316b0a9e09cd117eb69a7a7c6f207f99d571aefc10178339_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-waiters-rhel9@sha256:97b80445bd1e8c9702ac61463ba432fcab7f66e0ea16da9fdea5d3e4e4fb1354_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:23dfb14441d8aa05ae61ed08a796fcd9289f3db9d1240334dfbc388fef31d757_s390x",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:7249468e1fa9c696705c20b38bdf66d5e224552c8a19034ffe2523b8cc80446c_ppc64le",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:77aa55c3379a978d4dd505999c3193f0b5b0f8a9f2890a83471c712cb529981e_arm64",
"Red Hat OpenShift Builds 1.6.5:registry.redhat.io/openshift-builds/openshift-builds-webhook-rhel9@sha256:d4b5c336cbf156ef13a1d3869f9565849332735f31346babbc17925451b16f73_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map"
}
]
}
RHSA-2025:22955
Vulnerability from csaf_redhat - Published: 2025-12-09 16:44 - Updated: 2026-07-01 00:23A local privilege escalation vulnerability has been discovered in containerd. This vulnerability is the result of an overly broad default permission which allows local users on the host to potentially access the metadata store, the content store and the contents of Kubernetes local volumes. The contents of volumes might include setuid binaries, which could allow a local user on the host to elevate privileges on the host.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64 | — |
Workaround
|
A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated container images are now available for director Operator for Red Hat OpenStack Platform 17.1.12 (Wallaby) for RHEL 9.2.\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service (IaaS) cloud running on commonly available physical hardware.\n\nThe Red Hat OpenStack Platform (RHOSP) director Operator adds the ability to install and run a RHOSP cloud within OpenShift Container Platform (OCP).\n\nSecurity Fixes:\n * containerd local privilege excalation (CVE-2024-25621)\n * SSH client panic due to unexpected SSH_AGENT_SUCCESS (CVE-2025-47913)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:22955",
"url": "https://access.redhat.com/errata/RHSA-2025:22955"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-25621",
"url": "https://access.redhat.com/security/cve/CVE-2024-25621"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47913",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/software/containers/search",
"url": "https://catalog.redhat.com/software/containers/search"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_22955.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenStack Platform 17.1.12 director Operator container images",
"tracking": {
"current_release_date": "2026-07-01T00:23:25+00:00",
"generator": {
"date": "2026-07-01T00:23:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2025:22955",
"initial_release_date": "2025-12-09T16:44:15+00:00",
"revision_history": [
{
"date": "2025-12-09T16:44:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-09T16:44:24+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:23:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenStack Platform 17.1",
"product": {
"name": "Red Hat OpenStack Platform 17.1",
"product_id": "Red Hat OpenStack Platform 17.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openstack:17.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenStack Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64",
"product": {
"name": "registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64",
"product_id": "registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/osp-director-agent@sha256%3Aa618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0?arch=amd64\u0026repository_url=registry.redhat.io/rhosp-rhel9\u0026tag=1.3.1-1765298349"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64",
"product": {
"name": "registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64",
"product_id": "registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/osp-director-downloader@sha256%3A58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8?arch=amd64\u0026repository_url=registry.redhat.io/rhosp-rhel9\u0026tag=1.3.1-1765298349"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64",
"product": {
"name": "registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64",
"product_id": "registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/osp-director-operator-bundle@sha256%3Abdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b?arch=amd64\u0026repository_url=registry.redhat.io/rhosp-rhel9\u0026tag=1.3.1-1765298349"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64",
"product": {
"name": "registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64",
"product_id": "registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/osp-director-operator@sha256%3A262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c?arch=amd64\u0026repository_url=registry.redhat.io/rhosp-rhel9\u0026tag=1.3.1-1765298349"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64 as a component of Red Hat OpenStack Platform 17.1",
"product_id": "Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64"
},
"product_reference": "registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64",
"relates_to_product_reference": "Red Hat OpenStack Platform 17.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64 as a component of Red Hat OpenStack Platform 17.1",
"product_id": "Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64"
},
"product_reference": "registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64",
"relates_to_product_reference": "Red Hat OpenStack Platform 17.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64 as a component of Red Hat OpenStack Platform 17.1",
"product_id": "Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64"
},
"product_reference": "registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64",
"relates_to_product_reference": "Red Hat OpenStack Platform 17.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64 as a component of Red Hat OpenStack Platform 17.1",
"product_id": "Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64"
},
"product_reference": "registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64",
"relates_to_product_reference": "Red Hat OpenStack Platform 17.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-25621",
"cwe": {
"id": "CWE-279",
"name": "Incorrect Execution-Assigned Permissions"
},
"discovery_date": "2025-11-06T19:01:04.402278+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2413190"
}
],
"notes": [
{
"category": "description",
"text": "A local privilege escalation vulnerability has been discovered in containerd. This vulnerability is the result of an overly broad default permission which allows local users on the host to potentially access the metadata store, the content store and the contents of Kubernetes local volumes. The contents of volumes might include setuid binaries, which could allow a local user on the host to elevate privileges on the host.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/containerd/containerd: containerd local privilege escalation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64"
],
"known_not_affected": [
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-25621"
},
{
"category": "external",
"summary": "RHBZ#2413190",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413190"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-25621",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25621"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-25621",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-25621"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/blob/main/docs/rootless.md",
"url": "https://github.com/containerd/containerd/blob/main/docs/rootless.md"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/commit/7c59e8e9e970d38061a77b586b23655c352bfec5",
"url": "https://github.com/containerd/containerd/commit/7c59e8e9e970d38061a77b586b23655c352bfec5"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/security/advisories/GHSA-pwhc-rpq9-4c8w",
"url": "https://github.com/containerd/containerd/security/advisories/GHSA-pwhc-rpq9-4c8w"
}
],
"release_date": "2025-11-06T18:36:21.566000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-09T16:44:15+00:00",
"details": "The container images provided by this update can be downloaded from the Red Hat container registry at registry.redhat.io or registry.access.redhat.com using the \u0027podman pull\u0027 command.\n\nFor more information about the images, search the image name in the Red Hat Ecosystem Catalog.",
"product_ids": [
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:22955"
},
{
"category": "workaround",
"details": "The system administrator on the host can manually chmod the directories to not\nhave group or world accessible permissions:\n```\nchmod 700 /var/lib/containerd\nchmod 700 /run/containerd/io.containerd.grpc.v1.cri\nchmod 700 /run/containerd/io.containerd.sandbox.controller.v1.shim\n```\nAn alternative mitigation would be to run containerd in rootless mode.",
"product_ids": [
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/containerd/containerd: containerd local privilege escalation"
},
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64"
],
"known_not_affected": [
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-09T16:44:15+00:00",
"details": "The container images provided by this update can be downloaded from the Red Hat container registry at registry.redhat.io or registry.access.redhat.com using the \u0027podman pull\u0027 command.\n\nFor more information about the images, search the image name in the Red Hat Ecosystem Catalog.",
"product_ids": [
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:22955"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-agent@sha256:a618bbff08e2c106afa08a7daf100b51ac7ae53fe932fa2611087df303cc79f0_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-downloader@sha256:58019aa648510b1cab8159798b4e155b0c0c7830747a849d61f804dc03a21cf8_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator-bundle@sha256:bdf3ef41beefd75babb1bc576bc52d46611efb3ba1ff3443ac7d1fe9f10f215b_amd64",
"Red Hat OpenStack Platform 17.1:registry.redhat.io/rhosp-rhel9/osp-director-operator@sha256:262d9d9ee1f5093a467168981f3bd952836ca227801acaca506cbcf496a38c8c_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
}
]
}
RHSA-2025:23028
Vulnerability from csaf_redhat - Published: 2025-12-10 10:20 - Updated: 2026-07-01 00:20A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 | — |
Workaround
|
A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 | — |
Workaround
|
Authlib’s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 “must‑understand” semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed‑language fleets, this enables split‑brain verification and can lead to policy bypass, replay, or privilege escalation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 | — |
Workaround
|
A denial of service flaw has been discovered in the python Authlib package. Authlib’s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url‑encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.12 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.12",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:23028",
"url": "https://access.redhat.com/errata/RHSA-2025:23028"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-34156",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47913",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-59420",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61920",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23028.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.12",
"tracking": {
"current_release_date": "2026-07-01T00:20:25+00:00",
"generator": {
"date": "2026-07-01T00:20:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2025:23028",
"initial_release_date": "2025-12-10T10:20:44+00:00",
"revision_history": [
{
"date": "2025-12-10T10:20:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-10T10:20:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:20:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.12",
"product": {
"name": "Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.12::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3A53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3A0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Aad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Ac5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.12.0-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3A1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Af960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Aa40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12-1765361593"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Ab2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.12.0-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Ab2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12-1765361593"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Abd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.12.0-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12-1765361593"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Acdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Aa71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.12.0-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765361593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12-1765361593"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T10:20:44+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23028"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T10:20:44+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23028"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-59420",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2025-09-22T18:01:35.379361+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2397460"
}
],
"notes": [
{
"category": "description",
"text": "Authlib\u2019s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 \u201cmust\u2011understand\u201d semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed\u2011language fleets, this enables split\u2011brain verification and can lead to policy bypass, replay, or privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib RFC violation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "RHBZ#2397460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2397460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-59420",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59420"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df",
"url": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32"
}
],
"release_date": "2025-09-22T17:28:53.869000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T10:20:44+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23028"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib RFC violation"
},
{
"cve": "CVE-2025-61920",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-10T20:01:12.833962+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2403179"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the python Authlib package. Authlib\u2019s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url\u2011encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "RHBZ#2403179",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2403179"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61920",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61920"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61920",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e",
"url": "https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-pq5p-34cr-23v9",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-pq5p-34cr-23v9"
}
],
"release_date": "2025-10-10T19:25:07.679000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T10:20:44+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23028"
},
{
"category": "workaround",
"details": "Users unable to upgrade may manually enforce input size limits before handing tokens to Authlib and/or use application-level throttling to reduce amplification risk.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib Denial of Service"
}
]
}
RHSA-2025:23059
Vulnerability from csaf_redhat - Published: 2025-12-10 15:51 - Updated: 2026-07-01 00:20A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 | — |
Workaround
|
A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 | — |
Workaround
|
Authlib’s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 “must‑understand” semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed‑language fleets, this enables split‑brain verification and can lead to policy bypass, replay, or privilege escalation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 | — |
Workaround
|
A denial of service flaw has been discovered in the python Authlib package. Authlib’s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url‑encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.12 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.12",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:23059",
"url": "https://access.redhat.com/errata/RHSA-2025:23059"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-34156",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47913",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-59420",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61920",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23059.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.12",
"tracking": {
"current_release_date": "2026-07-01T00:20:25+00:00",
"generator": {
"date": "2026-07-01T00:20:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2025:23059",
"initial_release_date": "2025-12-10T15:51:53+00:00",
"revision_history": [
{
"date": "2025-12-10T15:51:53+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-10T15:52:01+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:20:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.12",
"product": {
"name": "Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.12::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3A53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3A0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Aad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Ac5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.12.0-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3A1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Af960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Aa40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12-1765381502"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Ab2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.12.0-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Ab2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12-1765381502"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Abd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.12.0-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12-1765381502"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Acdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Aa71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.12.0-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765381502"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12-1765381502"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T15:51:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23059"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T15:51:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23059"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-59420",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2025-09-22T18:01:35.379361+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2397460"
}
],
"notes": [
{
"category": "description",
"text": "Authlib\u2019s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 \u201cmust\u2011understand\u201d semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed\u2011language fleets, this enables split\u2011brain verification and can lead to policy bypass, replay, or privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib RFC violation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "RHBZ#2397460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2397460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-59420",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59420"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df",
"url": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32"
}
],
"release_date": "2025-09-22T17:28:53.869000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T15:51:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23059"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib RFC violation"
},
{
"cve": "CVE-2025-61920",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-10T20:01:12.833962+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2403179"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the python Authlib package. Authlib\u2019s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url\u2011encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "RHBZ#2403179",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2403179"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61920",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61920"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61920",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e",
"url": "https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-pq5p-34cr-23v9",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-pq5p-34cr-23v9"
}
],
"release_date": "2025-10-10T19:25:07.679000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T15:51:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23059"
},
{
"category": "workaround",
"details": "Users unable to upgrade may manually enforce input size limits before handing tokens to Authlib and/or use application-level throttling to reduce amplification risk.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib Denial of Service"
}
]
}
RHSA-2025:23060
Vulnerability from csaf_redhat - Published: 2025-12-10 16:11 - Updated: 2026-07-01 00:20A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 | — |
Workaround
|
A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 | — |
Workaround
|
Authlib’s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 “must‑understand” semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed‑language fleets, this enables split‑brain verification and can lead to policy bypass, replay, or privilege escalation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 | — |
Workaround
|
A denial of service flaw has been discovered in the python Authlib package. Authlib’s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url‑encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.12 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.12",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:23060",
"url": "https://access.redhat.com/errata/RHSA-2025:23060"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-34156",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47913",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-59420",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61920",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23060.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.12",
"tracking": {
"current_release_date": "2026-07-01T00:20:27+00:00",
"generator": {
"date": "2026-07-01T00:20:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2025:23060",
"initial_release_date": "2025-12-10T16:11:04+00:00",
"revision_history": [
{
"date": "2025-12-10T16:11:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-10T16:11:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:20:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.12",
"product": {
"name": "Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.12::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3A53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3A0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Aad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Ac5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.12.0-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3A1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Af960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Aa40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12-1765382602"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Ab2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.12.0-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Ab2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12-1765382602"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Abd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.12.0-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12-1765382602"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Acdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Aa71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.12.0-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12.13-1765382602"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.12-1765382602"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:11:04+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23060"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:11:04+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23060"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-59420",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2025-09-22T18:01:35.379361+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2397460"
}
],
"notes": [
{
"category": "description",
"text": "Authlib\u2019s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 \u201cmust\u2011understand\u201d semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed\u2011language fleets, this enables split\u2011brain verification and can lead to policy bypass, replay, or privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib RFC violation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "RHBZ#2397460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2397460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-59420",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59420"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df",
"url": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32"
}
],
"release_date": "2025-09-22T17:28:53.869000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:11:04+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23060"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib RFC violation"
},
{
"cve": "CVE-2025-61920",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-10T20:01:12.833962+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2403179"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the python Authlib package. Authlib\u2019s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url\u2011encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "RHBZ#2403179",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2403179"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61920",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61920"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61920",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e",
"url": "https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-pq5p-34cr-23v9",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-pq5p-34cr-23v9"
}
],
"release_date": "2025-10-10T19:25:07.679000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:11:04+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23060"
},
{
"category": "workaround",
"details": "Users unable to upgrade may manually enforce input size limits before handing tokens to Authlib and/or use application-level throttling to reduce amplification risk.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:11091b652f65868606c3d4d3e30a04cea7396f06f119bcd0a4cf664db2aa790e_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:212ceac279067567409c47acf7792e0c4d1955395f045e3b717040321dc1b88f_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:451da4b858587adcef52b5f1c9b7c92985bd7cc7c90f651b9e38825b81b38fb0_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:c5cb9d3d0f970ad36005f2d376547e967e4a89574cca1cf8806bb92d05199d70_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:0a978bbe91e0e0b8bab6862522f8a0aa8e974b778cc36b83f0781081621c8e23_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8b3684c92affc7acadcd5dc8eb80e5727081c7ecf4cc6eeafe5ecc5ea60970bb_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8d474498354d438fc9deeceb3bc89649f35d4e382e930ee721059bfeaf0f8279_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ad2119941c2e8db1691a9bfee085425c7203ab00c2cdf0a6441b1102109cfd21_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cdf96fe7a1ad4c192b4313e804d40d5c656c3f0ced498bae2427e449f0b2df02_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0c7a94928e8ef89aebdd9b30a47aaf0fe4dfb3a716603362b5c7d52255c4e842_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:1f769259f2b91d47f4d4fbf92414903a62380a358737e7100a1166ccd8c89b85_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a71b5493009863c4f1e9ae9393ff236dc262d84ee028482ee58840fbfe392c83_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bd796d2de4d02f63adc767aa22b9a388b3adea40c12b0d8f158ebffabed6fee9_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:00eb13b3cccf326292589a680a964160c58f83391d0036c4ebcb34fad32b6189_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:0ca5a583ca7ff0161ed35deeae94be78adc74100d0343b778f1edf5b77e90925_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3facbc804376b505181c2f52f0c7a433111bcedcb5699a0fcdffd7e9a2bdfbbe_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:7a338bb18181535a2644bf70cae05042e1ef2af5a80e70a6cab6516e8f054896_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:53c387293b92691eb66ea73b1d29781cf275f01b4254c38e21620c0502987272_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1b0a31b5f6d1e1493974efb8c7ca5112e6e4d8f0b8e1de8e55b7b8c1184b2293_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:33d0912dbad0b1702fd91abf87e38910d2b983334062044c292a0cb1714187a0_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7814f04947e8e98d3c4870894e320b12c557976495bdf28a89b55bf061bacf79_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b2a263d3cbf303d0dffb2c36ee2a4187c29902ce96ca1ded6f33b2edcc68fda9_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:1c915a6f813564b9bf8062ea5c6a83097a8dd78a38fda0171fae9cc8d81299c7_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:37039569fe73c3975468ffb8640c42becdd9b5304fb5e54789bf59dc67c52c9b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:4e2ef7cca978574e1715c24b9874c7a0a1a46a6319884a91fe54df06efe97df1_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:b2e2d245c7ba3d1528e73b59bad428f023eeb17a1983d61edcf6a22db58911cf_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f960e1816f8babb590a55ccab9f2db1b567df749e73c70067269d32f6200bca6_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:30152d31da209c034ec39b52a32063437097eec9a4fac2eaf4a4110fea97cb70_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:38f094f62eed92d88eae0e7a9be410ef908bd0194b30240d49087ae76250e0ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:4d0a86e557e93eb8e7d70d538f181c2d33176b3537fb8d9e3a1e76a16ee2eed5_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:a40309477f7286b6c00381012eec8d3ececb557a4b8db38e5b4ea7f321a17c79_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib Denial of Service"
}
]
}
RHSA-2025:23061
Vulnerability from csaf_redhat - Published: 2025-12-10 16:13 - Updated: 2026-07-01 00:20A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x | — |
Workaround
|
A flaw was found in the x/crypto/ssh go library. Applications and libraries that misuse the ServerConfig.PublicKeyCallback callback may be susceptible to an authorization bypass. For example, an attacker may send public keys A and B and authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B, for which the attacker does not control the private key. The misuse of ServerConfig.PublicKeyCallback may cause an authorization bypass.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x | — |
Workaround
|
A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x | — |
A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x | — |
Workaround
|
Authlib’s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 “must‑understand” semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed‑language fleets, this enables split‑brain verification and can lead to policy bypass, replay, or privilege escalation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64 | — |
Workaround
|
A denial of service flaw has been discovered in the python Authlib package. Authlib’s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url‑encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.9.17 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.9.17",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:23061",
"url": "https://access.redhat.com/errata/RHSA-2025:23061"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-34156",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45337",
"url": "https://access.redhat.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45338",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47913",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-59420",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61920",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23061.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.9.17",
"tracking": {
"current_release_date": "2026-07-01T00:20:25+00:00",
"generator": {
"date": "2026-07-01T00:20:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2025:23061",
"initial_release_date": "2025-12-10T16:13:23+00:00",
"revision_history": [
{
"date": "2025-12-10T16:13:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-11T15:24:12+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:20:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.9",
"product": {
"name": "Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.9::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3A00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Acc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3A7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.9.0-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3A3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9-1765382758"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Af78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3Aa9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Aad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.9.0-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Ace4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9-1765382758"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Addbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.9.0-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9-1765382758"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Ab3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Ab0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Ae701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3Ac644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=8.10-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.9.0-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9.17-1765382758"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.9-1765382758"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64 as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"relates_to_product_reference": "Red Hat Quay 3.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x as a component of Red Hat Quay 3.9",
"product_id": "Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x",
"relates_to_product_reference": "Red Hat Quay 3.9"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64"
],
"known_not_affected": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:13:23+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23061"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-45337",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2024-12-11T19:00:54.247490+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2331720"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the x/crypto/ssh go library. Applications and libraries that misuse the ServerConfig.PublicKeyCallback callback may be susceptible to an authorization bypass. For example, an attacker may send public keys A and B and authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B, for which the attacker does not control the private key. The misuse of ServerConfig.PublicKeyCallback may cause an authorization bypass.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as important rather than critical because it does not directly enable unauthorized access but rather introduces a risk of authorization bypass if the application or library misuses the PublicKeyCallback API. The vulnerability relies on incorrect assumptions made by the application when handling the sequence or state of keys provided during SSH authentication. Properly implemented systems that use the Permissions field or avoid relying on external state remain unaffected. Additionally, the vulnerability does not allow direct exploitation to gain control over a system without the presence of insecure logic in the application\u0027s handling of authentication attempts.\n\n\nRed Hat Enterprise Linux(RHEL) 8 \u0026 9 and Red Hat Openshift marked as not affected as it was determined that the problem function `ServerConfig.PublicKeyCallback`, as noted in the CVE-2024-45337 issue, is not called by Podman, Buildah, containers-common, or the gvisor-tap-vsock projects.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64"
],
"known_not_affected": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "RHBZ#2331720",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2331720"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45337"
},
{
"category": "external",
"summary": "https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909",
"url": "https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909"
},
{
"category": "external",
"summary": "https://go.dev/cl/635315",
"url": "https://go.dev/cl/635315"
},
{
"category": "external",
"summary": "https://go.dev/issue/70779",
"url": "https://go.dev/issue/70779"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/-nPEi39gI4Q/m/cGVPJCqdAQAJ",
"url": "https://groups.google.com/g/golang-announce/c/-nPEi39gI4Q/m/cGVPJCqdAQAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3321",
"url": "https://pkg.go.dev/vuln/GO-2024-3321"
}
],
"release_date": "2024-12-11T18:55:58.506000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:13:23+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23061"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64"
],
"known_not_affected": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:13:23+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23061"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:13:23+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23061"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-59420",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2025-09-22T18:01:35.379361+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2397460"
}
],
"notes": [
{
"category": "description",
"text": "Authlib\u2019s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 \u201cmust\u2011understand\u201d semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed\u2011language fleets, this enables split\u2011brain verification and can lead to policy bypass, replay, or privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib RFC violation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "RHBZ#2397460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2397460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-59420",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59420"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df",
"url": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32"
}
],
"release_date": "2025-09-22T17:28:53.869000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:13:23+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23061"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib RFC violation"
},
{
"cve": "CVE-2025-61920",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-10T20:01:12.833962+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2403179"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the python Authlib package. Authlib\u2019s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url\u2011encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "RHBZ#2403179",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2403179"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61920",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61920"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61920",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e",
"url": "https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-pq5p-34cr-23v9",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-pq5p-34cr-23v9"
}
],
"release_date": "2025-10-10T19:25:07.679000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:13:23+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23061"
},
{
"category": "workaround",
"details": "Users unable to upgrade may manually enforce input size limits before handing tokens to Authlib and/or use application-level throttling to reduce amplification risk.",
"product_ids": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:02ced94ebfcce3e21bcc71af6aa1c11db50822c91dd05cec4fb41a34e6669112_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:42a67bb2e5ab681eadc253b413f0bf557d63f282f270e6064f5768fecf6886e5_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:880c746eb5822f68e41ca7b60d97799115c30f39bdc7e458f7a4101e2af36c8c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/clair-rhel8@sha256:ad995b723102f4472e4190257b61582de5c6b058b908bcee7cebe683ae77be75_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:7db467404171294d793ef0fd1a59fd6e5bd20ed8915913a1edf013d18e4c9a78_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1deefc2cd91d0f2c474eda0fbb81bbce30786754d8fb9100b73823fae9562a40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b0b66c3c98a91dc4d4e1e0dd1b2fa58b542b02e27ba283cd5d90b7758ebfaf21_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:ddbf02cbfae810853f79628b576abcd0276f27ef27ad07a92f71df93a339cb4a_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f78eef52e9365e9e2beb65496840748f00d6b6f662da50bbf48b9c695369b359_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e21d3d9c9ee2de4a1e557e32521f64db2098b9f4dcd32e0d6f4d0962be7993_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:69806c46f3439bd780533b2660726a95c8acbff0986e340b040f1fb333e5feaf_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:88724eda5d52df59f156b7d318f69c79540faddb41bb770b7f56394fd76ba5e1_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:e701896ef9c36202581832d3dd9413f99c94ab7da435f7afb91c9e0ffe2e20ae_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:118676c250f94b51d2484414190933c1d8fa61605cef0deff2aab6527f783d73_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:5f883757f060b68dfd010f125d31556df3d29c129de088c257debd8239cf7d40_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:a9cbc8c21b24b5a534de5e553040b13d7d02dcb7ebf23d35019a65a253825bb6_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-builder-rhel8@sha256:c644998824e04ecf279deae25a22cce6c48d8bca44755f76eb4abacf17052519_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:00dc04b86ae7fd7dd37e9234ed2b4a1d0f0403993c153e197ac8b96233e95048_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:385004b2d63a6fee322819b91d7d1df2368742b75a88960f9a43adb5a3727ac0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:795bd464d6825f905679d1ad504d7e4f5c6291f89706f3b78c41bc6776522805_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:b3fc7bb5b6912f68e9b3422eb2f3ad072f0cd8ff412c5b56b9879fd4a6f3f78c_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:cc9d5c2de42541033a2c01aeb385404058cdac60a8cd2fd9889f7d73cdbc6292_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-bundle@sha256:3c1f25918b505ec71eaf93d2a0b963d209e36d847e7fc48469f9d40b534344ae_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:02fa492e51729469aaf4e106ad4fbfbf8bfeb63fd51b668782825a4f0ef10194_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:1230d53c9bf30d0ef730a403012530c0bf654d597b164687911524f8b5085eac_s390x",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:6d831031c1e4cdc251236b241e4a15b7152900d75fb0bee8bdd39610e249a53b_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-operator-rhel8@sha256:ce4e7a55f2d6768340bf5d13b3b60e61c3d1a783ec338f591dd56003e665895e_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1cb5d4a87d8bd300edace58d2f3658e1296a23c0d4fed13fd0baa2fdb1da27d8_amd64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:1e95647d265fcc668bb66cc83fff56eb00eb2a7a4c8a7a2d86186bdc68de3ea0_ppc64le",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:2336ad8d4b4874a92c6cfcbc8458b6d26f7f6dde300ca0e159f2b73d7e6839cd_arm64",
"Red Hat Quay 3.9:registry.redhat.io/quay/quay-rhel8@sha256:55a8de289089989f26365c0011d30310fdc525e8515f7be94956b8c21769edda_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib Denial of Service"
}
]
}
RHSA-2025:23064
Vulnerability from csaf_redhat - Published: 2025-12-10 16:36 - Updated: 2026-07-01 00:20A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64 | — |
Workaround
|
A flaw was found in the x/crypto/ssh go library. Applications and libraries that misuse the ServerConfig.PublicKeyCallback callback may be susceptible to an authorization bypass. For example, an attacker may send public keys A and B and authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B, for which the attacker does not control the private key. The misuse of ServerConfig.PublicKeyCallback may cause an authorization bypass.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64 | — |
Workaround
|
A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64 | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le | — | ||
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64 | — |
A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64 | — |
Workaround
|
Authlib’s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 “must‑understand” semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed‑language fleets, this enables split‑brain verification and can lead to policy bypass, replay, or privilege escalation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x | — |
Workaround
|
A denial of service flaw has been discovered in the python Authlib package. Authlib’s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url‑encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.10.17 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.10.17",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:23064",
"url": "https://access.redhat.com/errata/RHSA-2025:23064"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-34156",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45337",
"url": "https://access.redhat.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45338",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47913",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-59420",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61920",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23064.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.10.17",
"tracking": {
"current_release_date": "2026-07-01T00:20:26+00:00",
"generator": {
"date": "2026-07-01T00:20:26+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2025:23064",
"initial_release_date": "2025-12-10T16:36:13+00:00",
"revision_history": [
{
"date": "2025-12-10T16:36:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-11T15:24:12+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:20:26+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.10",
"product": {
"name": "Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.10::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3Ab82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Aab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3A8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Aaa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Acf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.10.16-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3A91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Acfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Ac7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Af55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Ad93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3Abcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Abb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.10.16-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Ad0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Ab9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Af3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3Ac6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.10.16-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Ab638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.14-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Afec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.10.16-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Ae83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=3.10.17-1765384144"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.10"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64 as a component of Red Hat Quay 3.10",
"product_id": "Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64",
"relates_to_product_reference": "Red Hat Quay 3.10"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:36:13+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23064"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-45337",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2024-12-11T19:00:54.247490+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2331720"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the x/crypto/ssh go library. Applications and libraries that misuse the ServerConfig.PublicKeyCallback callback may be susceptible to an authorization bypass. For example, an attacker may send public keys A and B and authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B, for which the attacker does not control the private key. The misuse of ServerConfig.PublicKeyCallback may cause an authorization bypass.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as important rather than critical because it does not directly enable unauthorized access but rather introduces a risk of authorization bypass if the application or library misuses the PublicKeyCallback API. The vulnerability relies on incorrect assumptions made by the application when handling the sequence or state of keys provided during SSH authentication. Properly implemented systems that use the Permissions field or avoid relying on external state remain unaffected. Additionally, the vulnerability does not allow direct exploitation to gain control over a system without the presence of insecure logic in the application\u0027s handling of authentication attempts.\n\n\nRed Hat Enterprise Linux(RHEL) 8 \u0026 9 and Red Hat Openshift marked as not affected as it was determined that the problem function `ServerConfig.PublicKeyCallback`, as noted in the CVE-2024-45337 issue, is not called by Podman, Buildah, containers-common, or the gvisor-tap-vsock projects.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "RHBZ#2331720",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2331720"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45337"
},
{
"category": "external",
"summary": "https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909",
"url": "https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909"
},
{
"category": "external",
"summary": "https://go.dev/cl/635315",
"url": "https://go.dev/cl/635315"
},
{
"category": "external",
"summary": "https://go.dev/issue/70779",
"url": "https://go.dev/issue/70779"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/-nPEi39gI4Q/m/cGVPJCqdAQAJ",
"url": "https://groups.google.com/g/golang-announce/c/-nPEi39gI4Q/m/cGVPJCqdAQAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3321",
"url": "https://pkg.go.dev/vuln/GO-2024-3321"
}
],
"release_date": "2024-12-11T18:55:58.506000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:36:13+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23064"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:36:13+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23064"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:36:13+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23064"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-59420",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2025-09-22T18:01:35.379361+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2397460"
}
],
"notes": [
{
"category": "description",
"text": "Authlib\u2019s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 \u201cmust\u2011understand\u201d semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed\u2011language fleets, this enables split\u2011brain verification and can lead to policy bypass, replay, or privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib RFC violation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "RHBZ#2397460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2397460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-59420",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59420"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df",
"url": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32"
}
],
"release_date": "2025-09-22T17:28:53.869000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:36:13+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23064"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib RFC violation"
},
{
"cve": "CVE-2025-61920",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-10T20:01:12.833962+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2403179"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the python Authlib package. Authlib\u2019s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url\u2011encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
],
"known_not_affected": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "RHBZ#2403179",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2403179"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61920",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61920"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61920",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e",
"url": "https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-pq5p-34cr-23v9",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-pq5p-34cr-23v9"
}
],
"release_date": "2025-10-10T19:25:07.679000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-10T16:36:13+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23064"
},
{
"category": "workaround",
"details": "Users unable to upgrade may manually enforce input size limits before handing tokens to Authlib and/or use application-level throttling to reduce amplification risk.",
"product_ids": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:83c5ad5ebfdd1b389af2fd407d8d6b8da52805cb3212bb2916108001296bb642_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:9403e73ee33102c2f18bcaca03e8eae21a283e47a4f288150db4d105a90b6b8f_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:bb630cb6e6bad937624d772e49a795da457035c7dcb1740c07d54a36f561ad79_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/clair-rhel8@sha256:fec577bc00c5dc32b284c30fb0d2e324a12d0f932b9abf65e70256e3d80bcda8_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:8b475114a5f77f7c041509a30246769a5f9064510724c8fc99ac29164dc3a0bb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:892bee6e3214a69b8924f840b69a55ac0c8d66443bf042cfa88c13766bd8dce3_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa126c3f4865a2a62cba2734110418c865aa2d32f38147c056732e53fc593715_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b9889747f06f6fe48cd1a79aaf6dcafcf6a9cdd2d2ad986fb10da3f2a51c103b_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:f55014b7e95512e2dcad9ebde4d36a39e136093ed22fc3436e66cf9b34091999_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:42e442bf326bf2039f7ead1d13ba0b47e605fce986c241e6fcfca9cc9926b255_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cf0b723425c76814def9211124d18ce95e58b265185e12c5ae183f9999e51b1a_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:d93675365e51845d5d8a17997395726a4b09952fba42aaccdcfe132fd8e4d31c_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f3223fc2fef5653947f8e402020c7f332beeee7c6a09d9be0bc7dc31ef3936f8_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:25567f02ee5b0640a12f76bfed9b889334363be402d9bdb14c8b7cc37feb6b28_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:6f893e3537bdc8ac814c5726f5594f4da820973d2246d3b399687d406e9a3952_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:bcc3f8c6589b63a0a162498ea2ab3596971a97b9107ade0ebd3e8d0d372ac84e_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-builder-rhel8@sha256:c6dfd40d71e49b352b39595ad73f06002d3bc448bc93e06def96ab3424451893_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:b82090e9203982de62d995c18eed37838b8ebbb092195a7f58d02526fd04523e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:03da6ae6711c5238e19daa8ccccd75bc936ab8144b67cb2ccddcd3d1d2e33a40_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:1bd8354520b468f4eb47872a428f56da551e6720f31a41ce6e02df5050b4f8b2_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:ab3aa3fde12c94c24c2c1a3caa08f5d995cc9d3d9cca1af8b46610f6b4ff28ee_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:c7c2192a046c0fde35dcafa363803c085663676224708f4520fd967b3d2c8dd4_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-bundle@sha256:91ce9e64184afb90b00360c64f5ba37d30130ab0344b2439b93db15f2b35b74d_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:3940beeed21aa2c4ae695e7ac40a0373a05246f1dff2d6d829d3111c032a1970_arm64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:96ee14d79f08194aa54cc7e6d1d814dae5af1d7143e513b6f1cb9397b6407ae6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:cfbfd35f7cd15df266c69d12975f64db2bc38238d2a0a7f9d17b319db20ccbbb_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-operator-rhel8@sha256:e83662cd7bab21bcd0faa26ae67f0cb9244a67e17036af92cf30fe2a5591dcb0_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:2b5f83bbade40b04a7975788743afdb8cec5f72ad8e5eea4c75d5840ce44ef3f_s390x",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:7b77b205b95f99383f12e571b391a35ea8f85dfd23f2d4fd67045bbece1ee66e_amd64",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:b638f53267de38576f1875ee3379114ba3c2089d8b26901c4a960ec82d35a0b6_ppc64le",
"Red Hat Quay 3.10:registry.redhat.io/quay/quay-rhel8@sha256:d0ad53575ddce599c11e959d3590300ab325633951003db4ef2d82a133c8ef19_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib Denial of Service"
}
]
}
RHSA-2025:23176
Vulnerability from csaf_redhat - Published: 2025-12-15 07:13 - Updated: 2026-07-01 00:20A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64 | — |
Workaround
|
A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64 | — |
Workaround
|
Authlib’s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 “must‑understand” semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed‑language fleets, this enables split‑brain verification and can lead to policy bypass, replay, or privilege escalation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le | — |
Workaround
|
A denial of service flaw has been discovered in the python Authlib package. Authlib’s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url‑encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.13.10 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.13.10",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:23176",
"url": "https://access.redhat.com/errata/RHSA-2025:23176"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-34156",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47913",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-59420",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61920",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23176.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.13.10",
"tracking": {
"current_release_date": "2026-07-01T00:20:26+00:00",
"generator": {
"date": "2026-07-01T00:20:26+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2025:23176",
"initial_release_date": "2025-12-15T07:13:36+00:00",
"revision_history": [
{
"date": "2025-12-15T07:13:36+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-15T07:13:43+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-01T00:20:26+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.13",
"product": {
"name": "Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.13::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3Ac0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3Abd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Af635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3Ae3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Afaba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Ab416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Afdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Aa152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=v3.13.10-1765782391"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"relates_to_product_reference": "Red Hat Quay 3.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64 as a component of Red Hat Quay 3.13",
"product_id": "Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64",
"relates_to_product_reference": "Red Hat Quay 3.13"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-15T07:13:36+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11358",
"product_ids": [
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23176"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-15T07:13:36+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11358",
"product_ids": [
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23176"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-59420",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2025-09-22T18:01:35.379361+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2397460"
}
],
"notes": [
{
"category": "description",
"text": "Authlib\u2019s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 \u201cmust\u2011understand\u201d semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed\u2011language fleets, this enables split\u2011brain verification and can lead to policy bypass, replay, or privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib RFC violation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "RHBZ#2397460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2397460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-59420",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59420"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df",
"url": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32"
}
],
"release_date": "2025-09-22T17:28:53.869000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-15T07:13:36+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11358",
"product_ids": [
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23176"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib RFC violation"
},
{
"cve": "CVE-2025-61920",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-10T20:01:12.833962+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2403179"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the python Authlib package. Authlib\u2019s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url\u2011encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
],
"known_not_affected": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "RHBZ#2403179",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2403179"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61920",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61920"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61920",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e",
"url": "https://github.com/authlib/authlib/commit/867e3f87b072347a1ae9cf6983cc8bbf88447e5e"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-pq5p-34cr-23v9",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-pq5p-34cr-23v9"
}
],
"release_date": "2025-10-10T19:25:07.679000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-15T07:13:36+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11358",
"product_ids": [
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23176"
},
{
"category": "workaround",
"details": "Users unable to upgrade may manually enforce input size limits before handing tokens to Authlib and/or use application-level throttling to reduce amplification risk.",
"product_ids": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1342015f8900bc707d1f83ec9cce6d73a63be03ca39f15952d7c30188a5358df_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:1badbeb73cfe6c33bbff6922f778fe967bccbaaff72898a391d02880e765aad7_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:3824fc5efcc434b7af55f83541186eebe666e106f22856daec3844c32a80ac41_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/clair-rhel8@sha256:625daa899431d9a6526e65c8834435cd4b065cc9ad36406023f1ba3820032e9a_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:bd1a02c47b6c32010fe19de6a994577b2c49ed692606d185d4252bb5ba347ecb_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:32d1326be0b497a153790a58572bb83555d7fe756e782d719d31fd0912769bf4_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:45b58ff658a6736e113db8b69f1e762bf8ead59110903f5a2adc16ebf6cb532e_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:8f2d0fc57d36feafb662d28136ebec46bad9047640cf126f2f4f49777ef5b357_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:b416224b4baa5a3c8663454f355aee800e327b28c6f19e0618b64b55f8daaf37_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:042fad54f97a923749bb9e28357f44c9ad55cc3e02ebd93386170d90aba8aed0_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:83ed8f834f7f93e91ef92c4e62dd37ad41149a52a8feecc5221daff3eb24ec27_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:92f9ae720c5c444a3e81ca42987152a689d2eaaa661e28b4cbc0363f1eaf56ce_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:f635f510c78e52dedc4cbd4b721cc98446a58a03d6f245713e3aaf6ba6f6dd57_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:0bb986d4f52cef09dd9a104660426a69d1f2c252b2f604758ae39a7cbaf7ee9b_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:5e4bfa8a9a4aa227922af4e35dcb3f659d1672d53c4c79bc35d0594b7cabbae7_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:6b8ae3a48b6237c6c689f1e62b3bb4eea645b5a3797a4e09e4a308f84f0c9ee7_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-builder-rhel8@sha256:8e4a2e7576bdf731816856a1c24c8d18292fe01df37393f845111a6df18b61a8_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:c0a8c5f5454426844c43f8732ed512ab30b5d4bd3e799fa3f133670d0ea431d5_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:38bcfcb8b18b9d0a84b108c9fde55fcda053c7cdbfc6f99639dd32d05f964756_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:9dd0249bc2ed6b1c2b26de52217d491204c925df3012df3ee3aeaaaa52b831b0_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:faba929adc7958495dae063add6f0e67b5c2a92cd5848b16e88654aec51cb5a9_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:fdee61c8dad676392456956ee47d5404f4b7bbf341453322d14feb71eb7660ab_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-bundle@sha256:e3bda08789b2ba41154d080a5f013ee0e2406d60f8414e63be451a6439555cc1_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:711b4047d6732b195af78cda60bdc7baba8fc64ec3bc67e566aab05f14ef54f6_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:71895379c0dca4fca449a1aee75d8aad06e1e72be3dee726cbe4c4f8fbe84fe2_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:9598f801ee479cb633d512b63a95659e05dbbd8d867e383dca5867f09e97e145_amd64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-operator-rhel8@sha256:a152946ac895db8778f8db536f644a8a8b54f5db329918a8a9442e7aa729dc8c_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:0b00334468578780a4e4b34c03260e57aa07ec47b0d4860b17c8ec964eb7634d_arm64",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:1d15d8b7f90327a4216efba353d61c94a9438e5a8df3e68da44907816943d0d3_ppc64le",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:28b200a0ba2c8095d93fc95edbdcdf83b2507a7379f2842fc0a1b7cc5fdd839c_s390x",
"Red Hat Quay 3.13:registry.redhat.io/quay/quay-rhel8@sha256:3d24fd39236e7f3180ff2cbef7a28e2e30d9609f6ec0538a41ad4a602eabd12e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib Denial of Service"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.