Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-52881 (GCVE-0-2025-52881)
Vulnerability from cvelistv5 – Published: 2025-11-06 20:23 – Updated: 2025-11-06 21:07
VLAI?
EPSS
Title
runc: LSM labels can be bypassed with malicious config using dummy procfs files
Summary
runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.
Severity ?
CWE
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| opencontainers | runc |
Affected:
<= 1.2.7, < 1.2.8
Affected: <= 1.3.2, < 1.3.3 Affected: <= 1.4.0-rc.2, < 1.4.0-rc.3 |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-52881",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-11-06T21:06:59.235416Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-11-06T21:07:09.382Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "runc",
"vendor": "opencontainers",
"versions": [
{
"status": "affected",
"version": "\u003c= 1.2.7, \u003c 1.2.8"
},
{
"status": "affected",
"version": "\u003c= 1.3.2, \u003c 1.3.3"
},
{
"status": "affected",
"version": "\u003c= 1.4.0-rc.2, \u003c 1.4.0-rc.3"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3."
}
],
"metrics": [
{
"cvssV4_0": {
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "LOCAL",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"privilegesRequired": "LOW",
"subAvailabilityImpact": "HIGH",
"subConfidentialityImpact": "HIGH",
"subIntegrityImpact": "HIGH",
"userInteraction": "ACTIVE",
"vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-61",
"description": "CWE-61: UNIX Symbolic Link (Symlink) Following",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-363",
"description": "CWE-363: Race Condition Enabling Link Following",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-11-06T20:23:36.237Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm"
},
{
"name": "https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r"
},
{
"name": "https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2"
},
{
"name": "https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480"
},
{
"name": "https://github.com/opencontainers/runc/commit/ff6fe1324663538167eca8b3d3eec61e1bd4fa51",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/ff6fe1324663538167eca8b3d3eec61e1bd4fa51"
},
{
"name": "https://github.com/opencontainers/runc/commit/ed6b1693b8b3ae7eb0250a7e76fc888cdacf98c1",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/ed6b1693b8b3ae7eb0250a7e76fc888cdacf98c1"
},
{
"name": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64"
},
{
"name": "https://github.com/opencontainers/runc/commit/d61fd29d854b416feaaf128bf650325cd2182165",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/d61fd29d854b416feaaf128bf650325cd2182165"
},
{
"name": "https://github.com/opencontainers/runc/commit/d40b3439a9614a86e87b81a94c6811ec6fa2d7d2",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/d40b3439a9614a86e87b81a94c6811ec6fa2d7d2"
},
{
"name": "https://github.com/opencontainers/runc/commit/b3dd1bc562ed9996d1a0f249e056c16624046d28",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/b3dd1bc562ed9996d1a0f249e056c16624046d28"
},
{
"name": "https://github.com/opencontainers/runc/commit/77d217c7c3775d8ca5af89e477e81568ef4572db",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/77d217c7c3775d8ca5af89e477e81568ef4572db"
},
{
"name": "https://github.com/opencontainers/runc/commit/77889b56db939c323d29d1130f28f9aea2edb544",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/77889b56db939c323d29d1130f28f9aea2edb544"
},
{
"name": "https://github.com/opencontainers/runc/commit/6fc191449109ea14bb7d61238f24a33fe08c651f",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/6fc191449109ea14bb7d61238f24a33fe08c651f"
},
{
"name": "https://github.com/opencontainers/runc/commit/4b37cd93f86e72feac866442988b549b5b7bf3e6",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/4b37cd93f86e72feac866442988b549b5b7bf3e6"
},
{
"name": "https://github.com/opencontainers/runc/commit/44a0fcf685db051c80b8c269812bb177f5802c58",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/44a0fcf685db051c80b8c269812bb177f5802c58"
},
{
"name": "https://github.com/opencontainers/runc/commit/435cc81be6b79cdec73b4002c0dae549b2f6ae6d",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/435cc81be6b79cdec73b4002c0dae549b2f6ae6d"
},
{
"name": "https://github.com/opencontainers/runc/commit/3f925525b44d247e390e529e772a0dc0c0bc3557",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/commit/3f925525b44d247e390e529e772a0dc0c0bc3557"
},
{
"name": "https://github.com/opencontainers/runc/blob/v1.4.0-rc.2/RELEASES.md",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/opencontainers/runc/blob/v1.4.0-rc.2/RELEASES.md"
},
{
"name": "http://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322",
"tags": [
"x_refsource_MISC"
],
"url": "http://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322"
},
{
"name": "http://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3",
"tags": [
"x_refsource_MISC"
],
"url": "http://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3"
}
],
"source": {
"advisory": "GHSA-cgrx-mc8f-2prm",
"discovery": "UNKNOWN"
},
"title": "runc: LSM labels can be bypassed with malicious config using dummy procfs files"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2025-52881",
"datePublished": "2025-11-06T20:23:36.237Z",
"dateReserved": "2025-06-20T17:42:25.708Z",
"dateUpdated": "2025-11-06T21:07:09.382Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-52881",
"date": "2026-05-07",
"epss": "0.00014",
"percentile": "0.02559"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-52881\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-11-06T21:15:42.817\",\"lastModified\":\"2025-12-03T18:37:17.917\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":7.3,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"ACTIVE\",\"vulnConfidentialityImpact\":\"HIGH\",\"vulnIntegrityImpact\":\"HIGH\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"HIGH\",\"subIntegrityImpact\":\"HIGH\",\"subAvailabilityImpact\":\"HIGH\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.8,\"impactScore\":6.0}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-61\"},{\"lang\":\"en\",\"value\":\"CWE-363\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.2.8\",\"matchCriteriaId\":\"889E52A1-D7B0-4DC8-BD63-9413A1DD9EEB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.3.0\",\"versionEndExcluding\":\"1.3.3\",\"matchCriteriaId\":\"F3193A96-E882-439B-984E-782315C62F69\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:1.4.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"082E3496-822B-481B-AC2F-DA8DCAFC28FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:1.4.0:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"71C62E90-6357-44A4-B582-28B1F1D9B16D\"}]}]}],\"references\":[{\"url\":\"http://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/blob/v1.4.0-rc.2/RELEASES.md\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/3f925525b44d247e390e529e772a0dc0c0bc3557\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/435cc81be6b79cdec73b4002c0dae549b2f6ae6d\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/44a0fcf685db051c80b8c269812bb177f5802c58\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/4b37cd93f86e72feac866442988b549b5b7bf3e6\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/6fc191449109ea14bb7d61238f24a33fe08c651f\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/77889b56db939c323d29d1130f28f9aea2edb544\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/77d217c7c3775d8ca5af89e477e81568ef4572db\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/b3dd1bc562ed9996d1a0f249e056c16624046d28\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/d40b3439a9614a86e87b81a94c6811ec6fa2d7d2\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/d61fd29d854b416feaaf128bf650325cd2182165\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/ed6b1693b8b3ae7eb0250a7e76fc888cdacf98c1\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/ff6fe1324663538167eca8b3d3eec61e1bd4fa51\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Mitigation\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-52881\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-11-06T21:06:59.235416Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-11-06T21:07:04.283Z\"}}], \"cna\": {\"title\": \"runc: LSM labels can be bypassed with malicious config using dummy procfs files\", \"source\": {\"advisory\": \"GHSA-cgrx-mc8f-2prm\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 7.3, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H\", \"userInteraction\": \"ACTIVE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"LOW\", \"subIntegrityImpact\": \"HIGH\", \"vulnIntegrityImpact\": \"HIGH\", \"subAvailabilityImpact\": \"HIGH\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"HIGH\", \"vulnConfidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"opencontainers\", \"product\": \"runc\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c= 1.2.7, \u003c 1.2.8\"}, {\"status\": \"affected\", \"version\": \"\u003c= 1.3.2, \u003c 1.3.3\"}, {\"status\": \"affected\", \"version\": \"\u003c= 1.4.0-rc.2, \u003c 1.4.0-rc.3\"}]}], \"references\": [{\"url\": \"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\", \"name\": \"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\", \"name\": \"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\", \"name\": \"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480\", \"name\": \"https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/ff6fe1324663538167eca8b3d3eec61e1bd4fa51\", \"name\": \"https://github.com/opencontainers/runc/commit/ff6fe1324663538167eca8b3d3eec61e1bd4fa51\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/ed6b1693b8b3ae7eb0250a7e76fc888cdacf98c1\", \"name\": \"https://github.com/opencontainers/runc/commit/ed6b1693b8b3ae7eb0250a7e76fc888cdacf98c1\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64\", \"name\": \"https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/d61fd29d854b416feaaf128bf650325cd2182165\", \"name\": \"https://github.com/opencontainers/runc/commit/d61fd29d854b416feaaf128bf650325cd2182165\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/d40b3439a9614a86e87b81a94c6811ec6fa2d7d2\", \"name\": \"https://github.com/opencontainers/runc/commit/d40b3439a9614a86e87b81a94c6811ec6fa2d7d2\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/b3dd1bc562ed9996d1a0f249e056c16624046d28\", \"name\": \"https://github.com/opencontainers/runc/commit/b3dd1bc562ed9996d1a0f249e056c16624046d28\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/77d217c7c3775d8ca5af89e477e81568ef4572db\", \"name\": \"https://github.com/opencontainers/runc/commit/77d217c7c3775d8ca5af89e477e81568ef4572db\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/77889b56db939c323d29d1130f28f9aea2edb544\", \"name\": \"https://github.com/opencontainers/runc/commit/77889b56db939c323d29d1130f28f9aea2edb544\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/6fc191449109ea14bb7d61238f24a33fe08c651f\", \"name\": \"https://github.com/opencontainers/runc/commit/6fc191449109ea14bb7d61238f24a33fe08c651f\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/4b37cd93f86e72feac866442988b549b5b7bf3e6\", \"name\": \"https://github.com/opencontainers/runc/commit/4b37cd93f86e72feac866442988b549b5b7bf3e6\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/44a0fcf685db051c80b8c269812bb177f5802c58\", \"name\": \"https://github.com/opencontainers/runc/commit/44a0fcf685db051c80b8c269812bb177f5802c58\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/435cc81be6b79cdec73b4002c0dae549b2f6ae6d\", \"name\": \"https://github.com/opencontainers/runc/commit/435cc81be6b79cdec73b4002c0dae549b2f6ae6d\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/commit/3f925525b44d247e390e529e772a0dc0c0bc3557\", \"name\": \"https://github.com/opencontainers/runc/commit/3f925525b44d247e390e529e772a0dc0c0bc3557\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/opencontainers/runc/blob/v1.4.0-rc.2/RELEASES.md\", \"name\": \"https://github.com/opencontainers/runc/blob/v1.4.0-rc.2/RELEASES.md\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"http://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322\", \"name\": \"http://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"http://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3\", \"name\": \"http://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-61\", \"description\": \"CWE-61: UNIX Symbolic Link (Symlink) Following\"}]}, {\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-363\", \"description\": \"CWE-363: Race Condition Enabling Link Following\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2025-11-06T20:23:36.237Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-52881\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-06T21:07:09.382Z\", \"dateReserved\": \"2025-06-20T17:42:25.708Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2025-11-06T20:23:36.237Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
SUSE-SU-2025:4079-1
Vulnerability from csaf_suse - Published: 2025-11-12 12:48 - Updated: 2025-11-12 12:48Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions (bsc#1252376)
- CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252376)
- CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252376)
Other fixes:
- podman and buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)
Patchnames: SUSE-2025-4079,SUSE-SLE-Micro-5.3-2025-4079,SUSE-SLE-Micro-5.4-2025-4079,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-4079,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-4079,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-4079,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-4079
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- CVE-2025-31133: Fixed container escape via \u0027masked path\u0027 abuse due to mount race conditions (bsc#1252376)\n- CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252376)\n- CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252376)\n \nOther fixes:\n- podman and buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-4079,SUSE-SLE-Micro-5.3-2025-4079,SUSE-SLE-Micro-5.4-2025-4079,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-4079,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-4079,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-4079,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-4079",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_4079-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:4079-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20254079-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:4079-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023273.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252376",
"url": "https://bugzilla.suse.com/1252376"
},
{
"category": "self",
"summary": "SUSE Bug 1252543",
"url": "https://bugzilla.suse.com/1252543"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2025-11-12T12:48:51Z",
"generator": {
"date": "2025-11-12T12:48:51Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:4079-1",
"initial_release_date": "2025-11-12T12:48:51Z",
"revision_history": [
{
"date": "2025-11-12T12:48:51Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.59.2.aarch64",
"product": {
"name": "podman-4.9.5-150400.4.59.2.aarch64",
"product_id": "podman-4.9.5-150400.4.59.2.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.59.2.aarch64",
"product": {
"name": "podman-remote-4.9.5-150400.4.59.2.aarch64",
"product_id": "podman-remote-4.9.5-150400.4.59.2.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.59.2.aarch64",
"product": {
"name": "podmansh-4.9.5-150400.4.59.2.aarch64",
"product_id": "podmansh-4.9.5-150400.4.59.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.59.2.i586",
"product": {
"name": "podman-4.9.5-150400.4.59.2.i586",
"product_id": "podman-4.9.5-150400.4.59.2.i586"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.59.2.i586",
"product": {
"name": "podman-remote-4.9.5-150400.4.59.2.i586",
"product_id": "podman-remote-4.9.5-150400.4.59.2.i586"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.59.2.i586",
"product": {
"name": "podmansh-4.9.5-150400.4.59.2.i586",
"product_id": "podmansh-4.9.5-150400.4.59.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-4.9.5-150400.4.59.2.noarch",
"product": {
"name": "podman-docker-4.9.5-150400.4.59.2.noarch",
"product_id": "podman-docker-4.9.5-150400.4.59.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.59.2.ppc64le",
"product": {
"name": "podman-4.9.5-150400.4.59.2.ppc64le",
"product_id": "podman-4.9.5-150400.4.59.2.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.59.2.ppc64le",
"product": {
"name": "podman-remote-4.9.5-150400.4.59.2.ppc64le",
"product_id": "podman-remote-4.9.5-150400.4.59.2.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.59.2.ppc64le",
"product": {
"name": "podmansh-4.9.5-150400.4.59.2.ppc64le",
"product_id": "podmansh-4.9.5-150400.4.59.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.59.2.s390x",
"product": {
"name": "podman-4.9.5-150400.4.59.2.s390x",
"product_id": "podman-4.9.5-150400.4.59.2.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.59.2.s390x",
"product": {
"name": "podman-remote-4.9.5-150400.4.59.2.s390x",
"product_id": "podman-remote-4.9.5-150400.4.59.2.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.59.2.s390x",
"product": {
"name": "podmansh-4.9.5-150400.4.59.2.s390x",
"product_id": "podmansh-4.9.5-150400.4.59.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.59.2.x86_64",
"product": {
"name": "podman-4.9.5-150400.4.59.2.x86_64",
"product_id": "podman-4.9.5-150400.4.59.2.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.59.2.x86_64",
"product": {
"name": "podman-remote-4.9.5-150400.4.59.2.x86_64",
"product_id": "podman-remote-4.9.5-150400.4.59.2.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.59.2.x86_64",
"product": {
"name": "podmansh-4.9.5-150400.4.59.2.x86_64",
"product_id": "podmansh-4.9.5-150400.4.59.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.59.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.s390x"
},
"product_reference": "podman-4.9.5-150400.4.59.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.59.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.s390x"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.59.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.s390x"
},
"product_reference": "podman-4.9.5-150400.4.59.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.59.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.s390x"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.59.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.59.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150400.4.59.2.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.59.2.noarch"
},
"product_reference": "podman-docker-4.9.5-150400.4.59.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.59.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.59.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150400.4.59.2.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch"
},
"product_reference": "podman-docker-4.9.5-150400.4.59.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.59.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.ppc64le"
},
"product_reference": "podman-4.9.5-150400.4.59.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.s390x"
},
"product_reference": "podman-4.9.5-150400.4.59.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.59.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150400.4.59.2.noarch as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch"
},
"product_reference": "podman-docker-4.9.5-150400.4.59.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.s390x"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.ppc64le"
},
"product_reference": "podman-4.9.5-150400.4.59.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.59.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.59.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150400.4.59.2.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.59.2.noarch"
},
"product_reference": "podman-docker-4.9.5-150400.4.59.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.59.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.59.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T12:48:51Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T12:48:51Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.59.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.59.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.59.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T12:48:51Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2026:20641-1
Vulnerability from csaf_suse - Published: 2026-03-03 16:04 - Updated: 2026-03-03 16:04Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
Changes in podman:
- Add symlink to catatonit in /usr/libexec/podman (bsc#1248988)
- CVE-2025-47914: Fixed golang.org/x/crypto/ssh/agent: non validated message size can cause a panic due to an out of bounds read (bsc#1253993)
- CVE-2025-47913: Fixed golang.org/x/crypto/ssh/agent: client process termination when receiving an unexpected message type in response to a key listing or signing request (bsc#1253542):
- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: Fixed runc: Container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files (bsc#1252376):
- CVE-2025-9566: Fixed that podman kube play command may overwrite host files (bsc#1249154):
Patchnames: SUSE-SL-Micro-6.2-343
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.3 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.1 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\nChanges in podman:\n\n- Add symlink to catatonit in /usr/libexec/podman (bsc#1248988)\n\n- CVE-2025-47914: Fixed golang.org/x/crypto/ssh/agent: non validated message size can cause a panic due to an out of bounds read (bsc#1253993)\n- CVE-2025-47913: Fixed golang.org/x/crypto/ssh/agent: client process termination when receiving an unexpected message type in response to a key listing or signing request (bsc#1253542):\n\n- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: Fixed runc: Container breakouts by bypassing runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1252376):\n- CVE-2025-9566: Fixed that podman kube play command may overwrite host files (bsc#1249154):\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SL-Micro-6.2-343",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20641-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20641-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620641-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20641-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024659.html"
},
{
"category": "self",
"summary": "SUSE Bug 1248988",
"url": "https://bugzilla.suse.com/1248988"
},
{
"category": "self",
"summary": "SUSE Bug 1249154",
"url": "https://bugzilla.suse.com/1249154"
},
{
"category": "self",
"summary": "SUSE Bug 1252376",
"url": "https://bugzilla.suse.com/1252376"
},
{
"category": "self",
"summary": "SUSE Bug 1253542",
"url": "https://bugzilla.suse.com/1253542"
},
{
"category": "self",
"summary": "SUSE Bug 1253993",
"url": "https://bugzilla.suse.com/1253993"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47914 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-6032 page",
"url": "https://www.suse.com/security/cve/CVE-2025-6032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-9566 page",
"url": "https://www.suse.com/security/cve/CVE-2025-9566/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2026-03-03T16:04:58Z",
"generator": {
"date": "2026-03-03T16:04:58Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20641-1",
"initial_release_date": "2026-03-03T16:04:58Z",
"revision_history": [
{
"date": "2026-03-03T16:04:58Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.4.1.aarch64",
"product": {
"name": "podman-5.4.2-160000.4.1.aarch64",
"product_id": "podman-5.4.2-160000.4.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.4.1.aarch64",
"product": {
"name": "podman-remote-5.4.2-160000.4.1.aarch64",
"product_id": "podman-remote-5.4.2-160000.4.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.4.1.aarch64",
"product": {
"name": "podmansh-5.4.2-160000.4.1.aarch64",
"product_id": "podmansh-5.4.2-160000.4.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-5.4.2-160000.4.1.noarch",
"product": {
"name": "podman-docker-5.4.2-160000.4.1.noarch",
"product_id": "podman-docker-5.4.2-160000.4.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.4.1.ppc64le",
"product": {
"name": "podman-5.4.2-160000.4.1.ppc64le",
"product_id": "podman-5.4.2-160000.4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.4.1.ppc64le",
"product": {
"name": "podman-remote-5.4.2-160000.4.1.ppc64le",
"product_id": "podman-remote-5.4.2-160000.4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.4.1.ppc64le",
"product": {
"name": "podmansh-5.4.2-160000.4.1.ppc64le",
"product_id": "podmansh-5.4.2-160000.4.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.4.1.s390x",
"product": {
"name": "podman-5.4.2-160000.4.1.s390x",
"product_id": "podman-5.4.2-160000.4.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.4.1.s390x",
"product": {
"name": "podman-remote-5.4.2-160000.4.1.s390x",
"product_id": "podman-remote-5.4.2-160000.4.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.4.1.s390x",
"product": {
"name": "podmansh-5.4.2-160000.4.1.s390x",
"product_id": "podmansh-5.4.2-160000.4.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.4.1.x86_64",
"product": {
"name": "podman-5.4.2-160000.4.1.x86_64",
"product_id": "podman-5.4.2-160000.4.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.4.1.x86_64",
"product": {
"name": "podman-remote-5.4.2-160000.4.1.x86_64",
"product_id": "podman-remote-5.4.2-160000.4.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.4.1.x86_64",
"product": {
"name": "podmansh-5.4.2-160000.4.1.x86_64",
"product_id": "podmansh-5.4.2-160000.4.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.2",
"product": {
"name": "SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:transactional"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64"
},
"product_reference": "podman-5.4.2-160000.4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le"
},
"product_reference": "podman-5.4.2-160000.4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x"
},
"product_reference": "podman-5.4.2-160000.4.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64"
},
"product_reference": "podman-5.4.2-160000.4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-5.4.2-160000.4.1.noarch as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch"
},
"product_reference": "podman-docker-5.4.2-160000.4.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64"
},
"product_reference": "podmansh-5.4.2-160000.4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le"
},
"product_reference": "podmansh-5.4.2-160000.4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x"
},
"product_reference": "podmansh-5.4.2-160000.4.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
},
"product_reference": "podmansh-5.4.2-160000.4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
},
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-47913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47913"
}
],
"notes": [
{
"category": "general",
"text": "SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47913",
"url": "https://www.suse.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "SUSE Bug 1253506 for CVE-2025-47913",
"url": "https://bugzilla.suse.com/1253506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-47913"
},
{
"cve": "CVE-2025-47914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47914"
}
],
"notes": [
{
"category": "general",
"text": "SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47914",
"url": "https://www.suse.com/security/cve/CVE-2025-47914"
},
{
"category": "external",
"summary": "SUSE Bug 1253967 for CVE-2025-47914",
"url": "https://bugzilla.suse.com/1253967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "moderate"
}
],
"title": "CVE-2025-47914"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
},
{
"cve": "CVE-2025-6032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-6032"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-6032",
"url": "https://www.suse.com/security/cve/CVE-2025-6032"
},
{
"category": "external",
"summary": "SUSE Bug 1245320 for CVE-2025-6032",
"url": "https://bugzilla.suse.com/1245320"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-6032"
},
{
"cve": "CVE-2025-9566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-9566"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file.\n\nBinary-Affected: podman\nUpstream-version-introduced: v4.0.0\nUpstream-version-fixed: v5.6.1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-9566",
"url": "https://www.suse.com/security/cve/CVE-2025-9566"
},
{
"category": "external",
"summary": "SUSE Bug 1249154 for CVE-2025-9566",
"url": "https://bugzilla.suse.com/1249154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-9566"
}
]
}
SUSE-SU-2026:20123-1
Vulnerability from csaf_suse - Published: 2026-01-22 13:01 - Updated: 2026-01-22 13:01Summary
Security update for buildah
Severity
Important
Notes
Title of the patch: Security update for buildah
Description of the patch: This update for buildah fixes the following issues:
- CVE-2025-47914: golang.org/x/crypto/ssh/agent: Fixed non validated message size causing a panic due to an out
of bounds read (bsc#1254054)
- CVE-2025-47913: golang.org/x/crypto/ssh/agent: Fixed client process termination when receiving an unexpected
message type in response to a key listing or signing request (bsc#1253598)
- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: Fixed container breakouts by bypassing runc's restrictions for writing to arbitrary /proc
files (bsc#1253096)
Other fixes:
- Updated to version 1.39.5.
Patchnames: SUSE-SLES-16.0-169
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah fixes the following issues:\n\n- CVE-2025-47914: golang.org/x/crypto/ssh/agent: Fixed non validated message size causing a panic due to an out\n of bounds read (bsc#1254054)\n- CVE-2025-47913: golang.org/x/crypto/ssh/agent: Fixed client process termination when receiving an unexpected\n message type in response to a key listing or signing request (bsc#1253598)\n- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: Fixed container breakouts by bypassing runc\u0027s restrictions for writing to arbitrary /proc\n files (bsc#1253096)\n\nOther fixes:\n\n- Updated to version 1.39.5.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-169",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20123-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20123-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620123-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20123-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-January/043749.html"
},
{
"category": "self",
"summary": "SUSE Bug 1253096",
"url": "https://bugzilla.suse.com/1253096"
},
{
"category": "self",
"summary": "SUSE Bug 1253598",
"url": "https://bugzilla.suse.com/1253598"
},
{
"category": "self",
"summary": "SUSE Bug 1254054",
"url": "https://bugzilla.suse.com/1254054"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47914 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for buildah",
"tracking": {
"current_release_date": "2026-01-22T13:01:23Z",
"generator": {
"date": "2026-01-22T13:01:23Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20123-1",
"initial_release_date": "2026-01-22T13:01:23Z",
"revision_history": [
{
"date": "2026-01-22T13:01:23Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.39.5-160000.1.1.aarch64",
"product": {
"name": "buildah-1.39.5-160000.1.1.aarch64",
"product_id": "buildah-1.39.5-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.39.5-160000.1.1.ppc64le",
"product": {
"name": "buildah-1.39.5-160000.1.1.ppc64le",
"product_id": "buildah-1.39.5-160000.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.39.5-160000.1.1.s390x",
"product": {
"name": "buildah-1.39.5-160000.1.1.s390x",
"product_id": "buildah-1.39.5-160000.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.39.5-160000.1.1.x86_64",
"product": {
"name": "buildah-1.39.5-160000.1.1.x86_64",
"product_id": "buildah-1.39.5-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.39.5-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64"
},
"product_reference": "buildah-1.39.5-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.39.5-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le"
},
"product_reference": "buildah-1.39.5-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.39.5-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x"
},
"product_reference": "buildah-1.39.5-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.39.5-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64"
},
"product_reference": "buildah-1.39.5-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.39.5-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64"
},
"product_reference": "buildah-1.39.5-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.39.5-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le"
},
"product_reference": "buildah-1.39.5-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.39.5-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x"
},
"product_reference": "buildah-1.39.5-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.39.5-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
},
"product_reference": "buildah-1.39.5-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-22T13:01:23Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-47913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47913"
}
],
"notes": [
{
"category": "general",
"text": "SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47913",
"url": "https://www.suse.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "SUSE Bug 1253506 for CVE-2025-47913",
"url": "https://bugzilla.suse.com/1253506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-22T13:01:23Z",
"details": "important"
}
],
"title": "CVE-2025-47913"
},
{
"cve": "CVE-2025-47914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47914"
}
],
"notes": [
{
"category": "general",
"text": "SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47914",
"url": "https://www.suse.com/security/cve/CVE-2025-47914"
},
{
"category": "external",
"summary": "SUSE Bug 1253967 for CVE-2025-47914",
"url": "https://bugzilla.suse.com/1253967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-22T13:01:23Z",
"details": "moderate"
}
],
"title": "CVE-2025-47914"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-22T13:01:23Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:buildah-1.39.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:buildah-1.39.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-22T13:01:23Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2025:4073-1
Vulnerability from csaf_suse - Published: 2025-11-12 10:34 - Updated: 2025-11-12 10:34Summary
Security update for runc
Severity
Important
Notes
Title of the patch: Security update for runc
Description of the patch: This update for runc fixes the following issues:
Update to runc v1.3.3. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.3>. bsc#1252232
* CVE-2025-31133
* CVE-2025-52565
* CVE-2025-52881
Update to runc v1.3.2. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.2> bsc#1252110
- Includes an important fix for the CPUSet translation for cgroupv2.
Update to runc v1.3.1. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.1>
Update to runc v1.3.0. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.0>
Patchnames: SUSE-2025-4073,SUSE-SLE-Micro-5.3-2025-4073,SUSE-SLE-Micro-5.4-2025-4073,SUSE-SLE-Micro-5.5-2025-4073,SUSE-SLE-Module-Basesystem-15-SP7-2025-4073,SUSE-SLE-Module-Containers-15-SP6-2025-4073,SUSE-SUSE-MicroOS-5.2-2025-4073,SUSE-Storage-7.1-2025-4073,openSUSE-SLE-15.6-2025-4073
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for runc fixes the following issues:\n\nUpdate to runc v1.3.3. Upstream changelog is available from\n\n \u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.3\u003e. bsc#1252232\n\n * CVE-2025-31133\n * CVE-2025-52565\n * CVE-2025-52881\n\nUpdate to runc v1.3.2. Upstream changelog is available from\n\n\u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.2\u003e bsc#1252110\n\n - Includes an important fix for the CPUSet translation for cgroupv2.\n\nUpdate to runc v1.3.1. Upstream changelog is available from\n\n\u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.1\u003e\n\nUpdate to runc v1.3.0. Upstream changelog is available from\n\n\u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.0\u003e",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-4073,SUSE-SLE-Micro-5.3-2025-4073,SUSE-SLE-Micro-5.4-2025-4073,SUSE-SLE-Micro-5.5-2025-4073,SUSE-SLE-Module-Basesystem-15-SP7-2025-4073,SUSE-SLE-Module-Containers-15-SP6-2025-4073,SUSE-SUSE-MicroOS-5.2-2025-4073,SUSE-Storage-7.1-2025-4073,openSUSE-SLE-15.6-2025-4073",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_4073-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:4073-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20254073-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:4073-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023265.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252110",
"url": "https://bugzilla.suse.com/1252110"
},
{
"category": "self",
"summary": "SUSE Bug 1252232",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for runc",
"tracking": {
"current_release_date": "2025-11-12T10:34:42Z",
"generator": {
"date": "2025-11-12T10:34:42Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:4073-1",
"initial_release_date": "2025-11-12T10:34:42Z",
"revision_history": [
{
"date": "2025-11-12T10:34:42Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-150000.85.1.aarch64",
"product": {
"name": "runc-1.3.3-150000.85.1.aarch64",
"product_id": "runc-1.3.3-150000.85.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-150000.85.1.i586",
"product": {
"name": "runc-1.3.3-150000.85.1.i586",
"product_id": "runc-1.3.3-150000.85.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-150000.85.1.ppc64le",
"product": {
"name": "runc-1.3.3-150000.85.1.ppc64le",
"product_id": "runc-1.3.3-150000.85.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-150000.85.1.s390x",
"product": {
"name": "runc-1.3.3-150000.85.1.s390x",
"product_id": "runc-1.3.3-150000.85.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-150000.85.1.x86_64",
"product": {
"name": "runc-1.3.3-150000.85.1.x86_64",
"product_id": "runc-1.3.3-150000.85.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.2"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.s390x"
},
"product_reference": "runc-1.3.3-150000.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.s390x"
},
"product_reference": "runc-1.3.3-150000.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.ppc64le"
},
"product_reference": "runc-1.3.3-150000.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.s390x"
},
"product_reference": "runc-1.3.3-150000.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.ppc64le"
},
"product_reference": "runc-1.3.3-150000.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.s390x"
},
"product_reference": "runc-1.3.3-150000.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.ppc64le"
},
"product_reference": "runc-1.3.3-150000.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.s390x"
},
"product_reference": "runc-1.3.3-150000.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.s390x"
},
"product_reference": "runc-1.3.3-150000.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:runc-1.3.3-150000.85.1.ppc64le"
},
"product_reference": "runc-1.3.3-150000.85.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:runc-1.3.3-150000.85.1.s390x"
},
"product_reference": "runc-1.3.3-150000.85.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.x86_64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.aarch64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.ppc64le",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.s390x",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.x86_64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.aarch64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.ppc64le",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.s390x",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.x86_64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.aarch64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.ppc64le",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.s390x",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T10:34:42Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.x86_64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.aarch64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.ppc64le",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.s390x",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.x86_64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.aarch64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.ppc64le",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.s390x",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.x86_64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.aarch64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.ppc64le",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.s390x",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T10:34:42Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.x86_64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.aarch64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.ppc64le",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.s390x",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.x86_64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.aarch64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.ppc64le",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.s390x",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.3.3-150000.85.1.x86_64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.aarch64",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.ppc64le",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.s390x",
"openSUSE Leap 15.6:runc-1.3.3-150000.85.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T10:34:42Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2025:21054-1
Vulnerability from csaf_suse - Published: 2025-11-10 14:24 - Updated: 2025-11-10 14:24Summary
Security update for runc
Severity
Important
Notes
Title of the patch: Security update for runc
Description of the patch: This update for runc fixes the following issues:
- Update to runc v1.3.3. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.3>. bsc#1252232
* CVE-2025-31133
* CVE-2025-52565
* CVE-2025-52881
- Update to runc v1.3.2. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.2> bsc#1252110
- Includes an important fix for the CPUSet translation for cgroupv2.
Patchnames: SUSE-SLE-Micro-6.1-333
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for runc fixes the following issues:\n\n- Update to runc v1.3.3. Upstream changelog is available from\n \u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.3\u003e. bsc#1252232\n * CVE-2025-31133\n * CVE-2025-52565\n * CVE-2025-52881\n\n- Update to runc v1.3.2. Upstream changelog is available from\n \u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.2\u003e bsc#1252110\n - Includes an important fix for the CPUSet translation for cgroupv2.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-333",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_21054-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:21054-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202521054-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:21054-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023420.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252110",
"url": "https://bugzilla.suse.com/1252110"
},
{
"category": "self",
"summary": "SUSE Bug 1252232",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for runc",
"tracking": {
"current_release_date": "2025-11-10T14:24:22Z",
"generator": {
"date": "2025-11-10T14:24:22Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:21054-1",
"initial_release_date": "2025-11-10T14:24:22Z",
"revision_history": [
{
"date": "2025-11-10T14:24:22Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-slfo.1.1_1.1.aarch64",
"product": {
"name": "runc-1.3.3-slfo.1.1_1.1.aarch64",
"product_id": "runc-1.3.3-slfo.1.1_1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-slfo.1.1_1.1.ppc64le",
"product": {
"name": "runc-1.3.3-slfo.1.1_1.1.ppc64le",
"product_id": "runc-1.3.3-slfo.1.1_1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-slfo.1.1_1.1.s390x",
"product": {
"name": "runc-1.3.3-slfo.1.1_1.1.s390x",
"product_id": "runc-1.3.3-slfo.1.1_1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-slfo.1.1_1.1.x86_64",
"product": {
"name": "runc-1.3.3-slfo.1.1_1.1.x86_64",
"product_id": "runc-1.3.3-slfo.1.1_1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-slfo.1.1_1.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.aarch64"
},
"product_reference": "runc-1.3.3-slfo.1.1_1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-slfo.1.1_1.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.ppc64le"
},
"product_reference": "runc-1.3.3-slfo.1.1_1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-slfo.1.1_1.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.s390x"
},
"product_reference": "runc-1.3.3-slfo.1.1_1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.x86_64"
},
"product_reference": "runc-1.3.3-slfo.1.1_1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-10T14:24:22Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-10T14:24:22Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:runc-1.3.3-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-10T14:24:22Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2025:3951-1
Vulnerability from csaf_suse - Published: 2025-11-05 10:23 - Updated: 2025-11-05 10:23Summary
Security update for runc
Severity
Important
Notes
Title of the patch: Security update for runc
Description of the patch: This update for runc fixes the following issues:
- CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions (bsc#1252232).
- CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252232).
- CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252232).
Update to runc v1.2.7.
- Upstream changelog is available from <https://github.com/opencontainers/runc/releases/tag/v1.2.7>
Patchnames: SUSE-2025-3951,SUSE-SLE-SERVER-12-SP5-LTSS-2025-3951,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-3951
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for runc fixes the following issues:\n\n- CVE-2025-31133: Fixed container escape via \u0027masked path\u0027 abuse due to mount race conditions (bsc#1252232).\n- CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252232).\n- CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252232).\n\nUpdate to runc v1.2.7. \n\n- Upstream changelog is available from \u003chttps://github.com/opencontainers/runc/releases/tag/v1.2.7\u003e\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-3951,SUSE-SLE-SERVER-12-SP5-LTSS-2025-3951,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-3951",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_3951-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:3951-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20253951-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:3951-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023151.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252232",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for runc",
"tracking": {
"current_release_date": "2025-11-05T10:23:31Z",
"generator": {
"date": "2025-11-05T10:23:31Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:3951-1",
"initial_release_date": "2025-11-05T10:23:31Z",
"revision_history": [
{
"date": "2025-11-05T10:23:31Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "runc-1.2.7-16.67.1.aarch64",
"product": {
"name": "runc-1.2.7-16.67.1.aarch64",
"product_id": "runc-1.2.7-16.67.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.2.7-16.67.1.i586",
"product": {
"name": "runc-1.2.7-16.67.1.i586",
"product_id": "runc-1.2.7-16.67.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.2.7-16.67.1.ppc64le",
"product": {
"name": "runc-1.2.7-16.67.1.ppc64le",
"product_id": "runc-1.2.7-16.67.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.2.7-16.67.1.s390x",
"product": {
"name": "runc-1.2.7-16.67.1.s390x",
"product_id": "runc-1.2.7-16.67.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.2.7-16.67.1.x86_64",
"product": {
"name": "runc-1.2.7-16.67.1.x86_64",
"product_id": "runc-1.2.7-16.67.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss-extended-security:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-16.67.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.aarch64"
},
"product_reference": "runc-1.2.7-16.67.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-16.67.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.ppc64le"
},
"product_reference": "runc-1.2.7-16.67.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-16.67.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.s390x"
},
"product_reference": "runc-1.2.7-16.67.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-16.67.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.x86_64"
},
"product_reference": "runc-1.2.7-16.67.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-16.67.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.2.7-16.67.1.x86_64"
},
"product_reference": "runc-1.2.7-16.67.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.2.7-16.67.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.2.7-16.67.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.2.7-16.67.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-05T10:23:31Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.2.7-16.67.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.2.7-16.67.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.2.7-16.67.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-05T10:23:31Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.2.7-16.67.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.2.7-16.67.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.2.7-16.67.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.2.7-16.67.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-05T10:23:31Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2026:20626-1
Vulnerability from csaf_suse - Published: 2026-03-03 16:04 - Updated: 2026-03-03 16:04Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
Changes in podman:
- Add symlink to catatonit in /usr/libexec/podman (bsc#1248988)
- CVE-2025-47914: Fixed golang.org/x/crypto/ssh/agent: non validated message size can cause a panic due to an out of bounds read (bsc#1253993)
- CVE-2025-47913: Fixed golang.org/x/crypto/ssh/agent: client process termination when receiving an unexpected message type in response to a key listing or signing request (bsc#1253542):
- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: Fixed runc: Container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files (bsc#1252376):
- CVE-2025-9566: Fixed that podman kube play command may overwrite host files (bsc#1249154):
Patchnames: SUSE-SLES-16.0-343
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.3 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.1 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\nChanges in podman:\n\n- Add symlink to catatonit in /usr/libexec/podman (bsc#1248988)\n\n- CVE-2025-47914: Fixed golang.org/x/crypto/ssh/agent: non validated message size can cause a panic due to an out of bounds read (bsc#1253993)\n- CVE-2025-47913: Fixed golang.org/x/crypto/ssh/agent: client process termination when receiving an unexpected message type in response to a key listing or signing request (bsc#1253542):\n\n- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: Fixed runc: Container breakouts by bypassing runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1252376):\n- CVE-2025-9566: Fixed that podman kube play command may overwrite host files (bsc#1249154):\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-343",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20626-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20626-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620626-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20626-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024648.html"
},
{
"category": "self",
"summary": "SUSE Bug 1248988",
"url": "https://bugzilla.suse.com/1248988"
},
{
"category": "self",
"summary": "SUSE Bug 1249154",
"url": "https://bugzilla.suse.com/1249154"
},
{
"category": "self",
"summary": "SUSE Bug 1252376",
"url": "https://bugzilla.suse.com/1252376"
},
{
"category": "self",
"summary": "SUSE Bug 1253542",
"url": "https://bugzilla.suse.com/1253542"
},
{
"category": "self",
"summary": "SUSE Bug 1253993",
"url": "https://bugzilla.suse.com/1253993"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47914 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-6032 page",
"url": "https://www.suse.com/security/cve/CVE-2025-6032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-9566 page",
"url": "https://www.suse.com/security/cve/CVE-2025-9566/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2026-03-03T16:04:58Z",
"generator": {
"date": "2026-03-03T16:04:58Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20626-1",
"initial_release_date": "2026-03-03T16:04:58Z",
"revision_history": [
{
"date": "2026-03-03T16:04:58Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.4.1.aarch64",
"product": {
"name": "podman-5.4.2-160000.4.1.aarch64",
"product_id": "podman-5.4.2-160000.4.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.4.1.aarch64",
"product": {
"name": "podman-remote-5.4.2-160000.4.1.aarch64",
"product_id": "podman-remote-5.4.2-160000.4.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.4.1.aarch64",
"product": {
"name": "podmansh-5.4.2-160000.4.1.aarch64",
"product_id": "podmansh-5.4.2-160000.4.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-5.4.2-160000.4.1.noarch",
"product": {
"name": "podman-docker-5.4.2-160000.4.1.noarch",
"product_id": "podman-docker-5.4.2-160000.4.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.4.1.ppc64le",
"product": {
"name": "podman-5.4.2-160000.4.1.ppc64le",
"product_id": "podman-5.4.2-160000.4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.4.1.ppc64le",
"product": {
"name": "podman-remote-5.4.2-160000.4.1.ppc64le",
"product_id": "podman-remote-5.4.2-160000.4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.4.1.ppc64le",
"product": {
"name": "podmansh-5.4.2-160000.4.1.ppc64le",
"product_id": "podmansh-5.4.2-160000.4.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.4.1.s390x",
"product": {
"name": "podman-5.4.2-160000.4.1.s390x",
"product_id": "podman-5.4.2-160000.4.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.4.1.s390x",
"product": {
"name": "podman-remote-5.4.2-160000.4.1.s390x",
"product_id": "podman-remote-5.4.2-160000.4.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.4.1.s390x",
"product": {
"name": "podmansh-5.4.2-160000.4.1.s390x",
"product_id": "podmansh-5.4.2-160000.4.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.4.1.x86_64",
"product": {
"name": "podman-5.4.2-160000.4.1.x86_64",
"product_id": "podman-5.4.2-160000.4.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.4.1.x86_64",
"product": {
"name": "podman-remote-5.4.2-160000.4.1.x86_64",
"product_id": "podman-remote-5.4.2-160000.4.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.4.1.x86_64",
"product": {
"name": "podmansh-5.4.2-160000.4.1.x86_64",
"product_id": "podmansh-5.4.2-160000.4.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64"
},
"product_reference": "podman-5.4.2-160000.4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le"
},
"product_reference": "podman-5.4.2-160000.4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x"
},
"product_reference": "podman-5.4.2-160000.4.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64"
},
"product_reference": "podman-5.4.2-160000.4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-5.4.2-160000.4.1.noarch as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch"
},
"product_reference": "podman-docker-5.4.2-160000.4.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64"
},
"product_reference": "podmansh-5.4.2-160000.4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le"
},
"product_reference": "podmansh-5.4.2-160000.4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x"
},
"product_reference": "podmansh-5.4.2-160000.4.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64"
},
"product_reference": "podmansh-5.4.2-160000.4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64"
},
"product_reference": "podman-5.4.2-160000.4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le"
},
"product_reference": "podman-5.4.2-160000.4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x"
},
"product_reference": "podman-5.4.2-160000.4.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.4.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64"
},
"product_reference": "podman-5.4.2-160000.4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-5.4.2-160000.4.1.noarch as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch"
},
"product_reference": "podman-docker-5.4.2-160000.4.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.4.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64"
},
"product_reference": "podman-remote-5.4.2-160000.4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64"
},
"product_reference": "podmansh-5.4.2-160000.4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le"
},
"product_reference": "podmansh-5.4.2-160000.4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x"
},
"product_reference": "podmansh-5.4.2-160000.4.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.4.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
},
"product_reference": "podmansh-5.4.2-160000.4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
},
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-47913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47913"
}
],
"notes": [
{
"category": "general",
"text": "SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47913",
"url": "https://www.suse.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "SUSE Bug 1253506 for CVE-2025-47913",
"url": "https://bugzilla.suse.com/1253506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-47913"
},
{
"cve": "CVE-2025-47914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47914"
}
],
"notes": [
{
"category": "general",
"text": "SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47914",
"url": "https://www.suse.com/security/cve/CVE-2025-47914"
},
{
"category": "external",
"summary": "SUSE Bug 1253967 for CVE-2025-47914",
"url": "https://bugzilla.suse.com/1253967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "moderate"
}
],
"title": "CVE-2025-47914"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
},
{
"cve": "CVE-2025-6032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-6032"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-6032",
"url": "https://www.suse.com/security/cve/CVE-2025-6032"
},
{
"category": "external",
"summary": "SUSE Bug 1245320 for CVE-2025-6032",
"url": "https://bugzilla.suse.com/1245320"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-6032"
},
{
"cve": "CVE-2025-9566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-9566"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file.\n\nBinary-Affected: podman\nUpstream-version-introduced: v4.0.0\nUpstream-version-fixed: v5.6.1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-9566",
"url": "https://www.suse.com/security/cve/CVE-2025-9566"
},
{
"category": "external",
"summary": "SUSE Bug 1249154 for CVE-2025-9566",
"url": "https://bugzilla.suse.com/1249154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.4.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.4.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T16:04:58Z",
"details": "important"
}
],
"title": "CVE-2025-9566"
}
]
}
SUSE-SU-2025:3950-1
Vulnerability from csaf_suse - Published: 2025-11-05 10:22 - Updated: 2025-11-05 10:22Summary
Security update for runc
Severity
Important
Notes
Title of the patch: Security update for runc
Description of the patch: This update for runc fixes the following issues:
- CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions (bsc#1252232).
- CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252232).
- CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252232).
Update to runc v1.2.7.
- Upstream changelog is available from <https://github.com/opencontainers/runc/releases/tag/v1.2.7>
Patchnames: SUSE-2025-3950,SUSE-SLE-Micro-5.3-2025-3950,SUSE-SLE-Micro-5.4-2025-3950,SUSE-SLE-Micro-5.5-2025-3950,SUSE-SLE-Module-Basesystem-15-SP7-2025-3950,SUSE-SLE-Module-Containers-15-SP6-2025-3950,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-3950,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-3950,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-3950,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-3950,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-3950,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-3950,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-3950,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3950,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-3950,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-3950,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-3950,SUSE-SUSE-MicroOS-5.2-2025-3950,SUSE-Storage-7.1-2025-3950,openSUSE-SLE-15.6-2025-3950
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for runc fixes the following issues:\n\n- CVE-2025-31133: Fixed container escape via \u0027masked path\u0027 abuse due to mount race conditions (bsc#1252232).\n- CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252232).\n- CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252232).\n\nUpdate to runc v1.2.7. \n\n- Upstream changelog is available from \u003chttps://github.com/opencontainers/runc/releases/tag/v1.2.7\u003e\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-3950,SUSE-SLE-Micro-5.3-2025-3950,SUSE-SLE-Micro-5.4-2025-3950,SUSE-SLE-Micro-5.5-2025-3950,SUSE-SLE-Module-Basesystem-15-SP7-2025-3950,SUSE-SLE-Module-Containers-15-SP6-2025-3950,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-3950,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-3950,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-3950,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-3950,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-3950,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-3950,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-3950,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3950,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-3950,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-3950,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-3950,SUSE-SUSE-MicroOS-5.2-2025-3950,SUSE-Storage-7.1-2025-3950,openSUSE-SLE-15.6-2025-3950",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_3950-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:3950-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20253950-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:3950-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023152.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252232",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for runc",
"tracking": {
"current_release_date": "2025-11-05T10:22:48Z",
"generator": {
"date": "2025-11-05T10:22:48Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:3950-1",
"initial_release_date": "2025-11-05T10:22:48Z",
"revision_history": [
{
"date": "2025-11-05T10:22:48Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "runc-1.2.7-150000.80.1.aarch64",
"product": {
"name": "runc-1.2.7-150000.80.1.aarch64",
"product_id": "runc-1.2.7-150000.80.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.2.7-150000.80.1.i586",
"product": {
"name": "runc-1.2.7-150000.80.1.i586",
"product_id": "runc-1.2.7-150000.80.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.2.7-150000.80.1.ppc64le",
"product": {
"name": "runc-1.2.7-150000.80.1.ppc64le",
"product_id": "runc-1.2.7-150000.80.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.2.7-150000.80.1.s390x",
"product": {
"name": "runc-1.2.7-150000.80.1.s390x",
"product_id": "runc-1.2.7-150000.80.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.2.7-150000.80.1.x86_64",
"product": {
"name": "runc-1.2.7-150000.80.1.x86_64",
"product_id": "runc-1.2.7-150000.80.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.2"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.s390x"
},
"product_reference": "runc-1.2.7-150000.80.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.s390x"
},
"product_reference": "runc-1.2.7-150000.80.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.ppc64le"
},
"product_reference": "runc-1.2.7-150000.80.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.s390x"
},
"product_reference": "runc-1.2.7-150000.80.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.ppc64le"
},
"product_reference": "runc-1.2.7-150000.80.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.s390x"
},
"product_reference": "runc-1.2.7-150000.80.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.ppc64le"
},
"product_reference": "runc-1.2.7-150000.80.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.s390x"
},
"product_reference": "runc-1.2.7-150000.80.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.ppc64le"
},
"product_reference": "runc-1.2.7-150000.80.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.s390x"
},
"product_reference": "runc-1.2.7-150000.80.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.ppc64le"
},
"product_reference": "runc-1.2.7-150000.80.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.s390x"
},
"product_reference": "runc-1.2.7-150000.80.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.ppc64le"
},
"product_reference": "runc-1.2.7-150000.80.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.s390x"
},
"product_reference": "runc-1.2.7-150000.80.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.ppc64le"
},
"product_reference": "runc-1.2.7-150000.80.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.ppc64le"
},
"product_reference": "runc-1.2.7-150000.80.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.ppc64le"
},
"product_reference": "runc-1.2.7-150000.80.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.s390x"
},
"product_reference": "runc-1.2.7-150000.80.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:runc-1.2.7-150000.80.1.aarch64"
},
"product_reference": "runc-1.2.7-150000.80.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:runc-1.2.7-150000.80.1.ppc64le"
},
"product_reference": "runc-1.2.7-150000.80.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:runc-1.2.7-150000.80.1.s390x"
},
"product_reference": "runc-1.2.7-150000.80.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.2.7-150000.80.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:runc-1.2.7-150000.80.1.x86_64"
},
"product_reference": "runc-1.2.7-150000.80.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.x86_64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.aarch64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.ppc64le",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.s390x",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.x86_64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.aarch64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.ppc64le",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.s390x",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.x86_64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.aarch64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.ppc64le",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.s390x",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-05T10:22:48Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.x86_64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.aarch64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.ppc64le",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.s390x",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.x86_64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.aarch64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.ppc64le",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.s390x",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.x86_64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.aarch64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.ppc64le",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.s390x",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-05T10:22:48Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.x86_64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.aarch64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.ppc64le",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.s390x",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.x86_64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.aarch64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.ppc64le",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.s390x",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.aarch64",
"SUSE Enterprise Storage 7.1:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.2:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Micro 5.5:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.2.7-150000.80.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.2.7-150000.80.1.x86_64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.aarch64",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.ppc64le",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.s390x",
"openSUSE Leap 15.6:runc-1.2.7-150000.80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-05T10:22:48Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2026:20103-1
Vulnerability from csaf_suse - Published: 2026-01-21 11:08 - Updated: 2026-01-21 11:08Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files (bsc#1252376).
- CVE-2025-9566: kube play command may overwrite host files (bsc#1249154).
Patchnames: SUSE-SLES-16.0-161
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.1 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: container breakouts by bypassing runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1252376).\n- CVE-2025-9566: kube play command may overwrite host files (bsc#1249154).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-161",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20103-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20103-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620103-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20103-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023881.html"
},
{
"category": "self",
"summary": "SUSE Bug 1249154",
"url": "https://bugzilla.suse.com/1249154"
},
{
"category": "self",
"summary": "SUSE Bug 1252376",
"url": "https://bugzilla.suse.com/1252376"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-9566 page",
"url": "https://www.suse.com/security/cve/CVE-2025-9566/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2026-01-21T11:08:51Z",
"generator": {
"date": "2026-01-21T11:08:51Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20103-1",
"initial_release_date": "2026-01-21T11:08:51Z",
"revision_history": [
{
"date": "2026-01-21T11:08:51Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.3.1.aarch64",
"product": {
"name": "podman-5.4.2-160000.3.1.aarch64",
"product_id": "podman-5.4.2-160000.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.3.1.aarch64",
"product": {
"name": "podman-remote-5.4.2-160000.3.1.aarch64",
"product_id": "podman-remote-5.4.2-160000.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.3.1.aarch64",
"product": {
"name": "podmansh-5.4.2-160000.3.1.aarch64",
"product_id": "podmansh-5.4.2-160000.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-5.4.2-160000.3.1.noarch",
"product": {
"name": "podman-docker-5.4.2-160000.3.1.noarch",
"product_id": "podman-docker-5.4.2-160000.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.3.1.ppc64le",
"product": {
"name": "podman-5.4.2-160000.3.1.ppc64le",
"product_id": "podman-5.4.2-160000.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.3.1.ppc64le",
"product": {
"name": "podman-remote-5.4.2-160000.3.1.ppc64le",
"product_id": "podman-remote-5.4.2-160000.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.3.1.ppc64le",
"product": {
"name": "podmansh-5.4.2-160000.3.1.ppc64le",
"product_id": "podmansh-5.4.2-160000.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.3.1.s390x",
"product": {
"name": "podman-5.4.2-160000.3.1.s390x",
"product_id": "podman-5.4.2-160000.3.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.3.1.s390x",
"product": {
"name": "podman-remote-5.4.2-160000.3.1.s390x",
"product_id": "podman-remote-5.4.2-160000.3.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.3.1.s390x",
"product": {
"name": "podmansh-5.4.2-160000.3.1.s390x",
"product_id": "podmansh-5.4.2-160000.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.3.1.x86_64",
"product": {
"name": "podman-5.4.2-160000.3.1.x86_64",
"product_id": "podman-5.4.2-160000.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.3.1.x86_64",
"product": {
"name": "podman-remote-5.4.2-160000.3.1.x86_64",
"product_id": "podman-remote-5.4.2-160000.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.3.1.x86_64",
"product": {
"name": "podmansh-5.4.2-160000.3.1.x86_64",
"product_id": "podmansh-5.4.2-160000.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.3.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64"
},
"product_reference": "podman-5.4.2-160000.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.3.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le"
},
"product_reference": "podman-5.4.2-160000.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.3.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x"
},
"product_reference": "podman-5.4.2-160000.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.3.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64"
},
"product_reference": "podman-5.4.2-160000.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-5.4.2-160000.3.1.noarch as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch"
},
"product_reference": "podman-docker-5.4.2-160000.3.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.3.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64"
},
"product_reference": "podman-remote-5.4.2-160000.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.3.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le"
},
"product_reference": "podman-remote-5.4.2-160000.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.3.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x"
},
"product_reference": "podman-remote-5.4.2-160000.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.3.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64"
},
"product_reference": "podman-remote-5.4.2-160000.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.3.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64"
},
"product_reference": "podmansh-5.4.2-160000.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.3.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le"
},
"product_reference": "podmansh-5.4.2-160000.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.3.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x"
},
"product_reference": "podmansh-5.4.2-160000.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.3.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64"
},
"product_reference": "podmansh-5.4.2-160000.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.3.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64"
},
"product_reference": "podman-5.4.2-160000.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le"
},
"product_reference": "podman-5.4.2-160000.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.3.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x"
},
"product_reference": "podman-5.4.2-160000.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64"
},
"product_reference": "podman-5.4.2-160000.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-5.4.2-160000.3.1.noarch as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch"
},
"product_reference": "podman-docker-5.4.2-160000.3.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.3.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64"
},
"product_reference": "podman-remote-5.4.2-160000.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le"
},
"product_reference": "podman-remote-5.4.2-160000.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.3.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x"
},
"product_reference": "podman-remote-5.4.2-160000.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64"
},
"product_reference": "podman-remote-5.4.2-160000.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.3.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64"
},
"product_reference": "podmansh-5.4.2-160000.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le"
},
"product_reference": "podmansh-5.4.2-160000.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.3.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x"
},
"product_reference": "podmansh-5.4.2-160000.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
},
"product_reference": "podmansh-5.4.2-160000.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-21T11:08:51Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-21T11:08:51Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-21T11:08:51Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
},
{
"cve": "CVE-2025-9566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-9566"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file.\n\nBinary-Affected: podman\nUpstream-version-introduced: v4.0.0\nUpstream-version-fixed: v5.6.1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-9566",
"url": "https://www.suse.com/security/cve/CVE-2025-9566"
},
{
"category": "external",
"summary": "SUSE Bug 1249154 for CVE-2025-9566",
"url": "https://bugzilla.suse.com/1249154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server 16.0:podmansh-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-21T11:08:51Z",
"details": "important"
}
],
"title": "CVE-2025-9566"
}
]
}
SUSE-SU-2025:21072-1
Vulnerability from csaf_suse - Published: 2025-11-20 16:43 - Updated: 2025-11-20 16:43Summary
Security update for runc
Severity
Important
Notes
Title of the patch: Security update for runc
Description of the patch: This update for runc fixes the following issues:
- Update to runc v1.3.3:
* CVE-2025-31133, CVE-2025-52565, CVE-2025-52881: Fixed container breakouts by bypassing
runc's restrictions for writing to arbitrary /proc files (bsc#1252232)
Patchnames: SUSE-SL-Micro-6.2-46
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for runc fixes the following issues:\n\n- Update to runc v1.3.3:\n * CVE-2025-31133, CVE-2025-52565, CVE-2025-52881: Fixed container breakouts by bypassing\n runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1252232)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SL-Micro-6.2-46",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_21072-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:21072-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202521072-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:21072-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023432.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252110",
"url": "https://bugzilla.suse.com/1252110"
},
{
"category": "self",
"summary": "SUSE Bug 1252232",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for runc",
"tracking": {
"current_release_date": "2025-11-20T16:43:58Z",
"generator": {
"date": "2025-11-20T16:43:58Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:21072-1",
"initial_release_date": "2025-11-20T16:43:58Z",
"revision_history": [
{
"date": "2025-11-20T16:43:58Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-160000.1.1.aarch64",
"product": {
"name": "runc-1.3.3-160000.1.1.aarch64",
"product_id": "runc-1.3.3-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-160000.1.1.ppc64le",
"product": {
"name": "runc-1.3.3-160000.1.1.ppc64le",
"product_id": "runc-1.3.3-160000.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-160000.1.1.s390x",
"product": {
"name": "runc-1.3.3-160000.1.1.s390x",
"product_id": "runc-1.3.3-160000.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-160000.1.1.x86_64",
"product": {
"name": "runc-1.3.3-160000.1.1.x86_64",
"product_id": "runc-1.3.3-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.2",
"product": {
"name": "SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:transactional"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-160000.1.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.aarch64"
},
"product_reference": "runc-1.3.3-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-160000.1.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.ppc64le"
},
"product_reference": "runc-1.3.3-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-160000.1.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.s390x"
},
"product_reference": "runc-1.3.3-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-160000.1.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.x86_64"
},
"product_reference": "runc-1.3.3-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-20T16:43:58Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-20T16:43:58Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Micro 6.2:runc-1.3.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-20T16:43:58Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2026:21291-1
Vulnerability from csaf_suse - Published: 2026-04-23 12:23 - Updated: 2026-04-23 12:23Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: Container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files (bsc#1252376).
- CVE-2025-47913: golang.org/x/crypto/ssh/agent: client process termination when receiving an unexpected message type in response to a key listing or signing request (bsc#1253542).
- CVE-2025-47914: golang.org/x/crypto/ssh/agent: non validated message size can cause a panic due to an out of bounds read (bsc#1253993).
Patchnames: SUSE-SLE-Micro-6.1-506
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: Container breakouts by bypassing runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1252376).\n- CVE-2025-47913: golang.org/x/crypto/ssh/agent: client process termination when receiving an unexpected message type in response to a key listing or signing request (bsc#1253542).\n- CVE-2025-47914: golang.org/x/crypto/ssh/agent: non validated message size can cause a panic due to an out of bounds read (bsc#1253993).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-506",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_21291-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:21291-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621291-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:21291-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/046026.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252376",
"url": "https://bugzilla.suse.com/1252376"
},
{
"category": "self",
"summary": "SUSE Bug 1253542",
"url": "https://bugzilla.suse.com/1253542"
},
{
"category": "self",
"summary": "SUSE Bug 1253993",
"url": "https://bugzilla.suse.com/1253993"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47914 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2026-04-23T12:23:33Z",
"generator": {
"date": "2026-04-23T12:23:33Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:21291-1",
"initial_release_date": "2026-04-23T12:23:33Z",
"revision_history": [
{
"date": "2026-04-23T12:23:33Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-slfo.1.1_4.1.aarch64",
"product": {
"name": "podman-5.4.2-slfo.1.1_4.1.aarch64",
"product_id": "podman-5.4.2-slfo.1.1_4.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"product": {
"name": "podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"product_id": "podman-remote-5.4.2-slfo.1.1_4.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"product": {
"name": "podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"product_id": "podmansh-5.4.2-slfo.1.1_4.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"product": {
"name": "podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"product_id": "podman-docker-5.4.2-slfo.1.1_4.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-slfo.1.1_4.1.ppc64le",
"product": {
"name": "podman-5.4.2-slfo.1.1_4.1.ppc64le",
"product_id": "podman-5.4.2-slfo.1.1_4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"product": {
"name": "podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"product_id": "podman-remote-5.4.2-slfo.1.1_4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"product": {
"name": "podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"product_id": "podmansh-5.4.2-slfo.1.1_4.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-slfo.1.1_4.1.s390x",
"product": {
"name": "podman-5.4.2-slfo.1.1_4.1.s390x",
"product_id": "podman-5.4.2-slfo.1.1_4.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"product": {
"name": "podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"product_id": "podman-remote-5.4.2-slfo.1.1_4.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-slfo.1.1_4.1.s390x",
"product": {
"name": "podmansh-5.4.2-slfo.1.1_4.1.s390x",
"product_id": "podmansh-5.4.2-slfo.1.1_4.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-slfo.1.1_4.1.x86_64",
"product": {
"name": "podman-5.4.2-slfo.1.1_4.1.x86_64",
"product_id": "podman-5.4.2-slfo.1.1_4.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"product": {
"name": "podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"product_id": "podman-remote-5.4.2-slfo.1.1_4.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-slfo.1.1_4.1.x86_64",
"product": {
"name": "podmansh-5.4.2-slfo.1.1_4.1.x86_64",
"product_id": "podmansh-5.4.2-slfo.1.1_4.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-slfo.1.1_4.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64"
},
"product_reference": "podman-5.4.2-slfo.1.1_4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-slfo.1.1_4.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le"
},
"product_reference": "podman-5.4.2-slfo.1.1_4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-slfo.1.1_4.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x"
},
"product_reference": "podman-5.4.2-slfo.1.1_4.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-slfo.1.1_4.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64"
},
"product_reference": "podman-5.4.2-slfo.1.1_4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-5.4.2-slfo.1.1_4.1.noarch as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch"
},
"product_reference": "podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-slfo.1.1_4.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64"
},
"product_reference": "podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-slfo.1.1_4.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le"
},
"product_reference": "podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-slfo.1.1_4.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x"
},
"product_reference": "podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-slfo.1.1_4.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64"
},
"product_reference": "podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-slfo.1.1_4.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64"
},
"product_reference": "podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-slfo.1.1_4.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le"
},
"product_reference": "podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-slfo.1.1_4.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x"
},
"product_reference": "podmansh-5.4.2-slfo.1.1_4.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-slfo.1.1_4.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
},
"product_reference": "podmansh-5.4.2-slfo.1.1_4.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T12:23:33Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-47913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47913"
}
],
"notes": [
{
"category": "general",
"text": "SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47913",
"url": "https://www.suse.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "SUSE Bug 1253506 for CVE-2025-47913",
"url": "https://bugzilla.suse.com/1253506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T12:23:33Z",
"details": "important"
}
],
"title": "CVE-2025-47913"
},
{
"cve": "CVE-2025-47914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47914"
}
],
"notes": [
{
"category": "general",
"text": "SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47914",
"url": "https://www.suse.com/security/cve/CVE-2025-47914"
},
{
"category": "external",
"summary": "SUSE Bug 1253967 for CVE-2025-47914",
"url": "https://bugzilla.suse.com/1253967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T12:23:33Z",
"details": "moderate"
}
],
"title": "CVE-2025-47914"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T12:23:33Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podman-docker-5.4.2-slfo.1.1_4.1.noarch",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podman-remote-5.4.2-slfo.1.1_4.1.x86_64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.aarch64",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.ppc64le",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.s390x",
"SUSE Linux Micro 6.1:podmansh-5.4.2-slfo.1.1_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-23T12:23:33Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2025:4074-1
Vulnerability from csaf_suse - Published: 2025-11-12 10:35 - Updated: 2025-11-12 10:35Summary
Security update for buildah
Severity
Important
Notes
Title of the patch: Security update for buildah
Description of the patch: This update for buildah fixes the following issues:
- CVE-2025-52881: Fixed container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files (bsc#1253096)
Other fixes:
- podman and buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)
Patchnames: SUSE-2025-4074,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-4074,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-4074,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-4074,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-4074
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah fixes the following issues:\n\n- CVE-2025-52881: Fixed container breakouts by bypassing runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1253096)\n\nOther fixes:\n \n- podman and buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-4074,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-4074,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-4074,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-4074,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-4074",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_4074-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:4074-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20254074-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:4074-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023264.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252543",
"url": "https://bugzilla.suse.com/1252543"
},
{
"category": "self",
"summary": "SUSE Bug 1253096",
"url": "https://bugzilla.suse.com/1253096"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for buildah",
"tracking": {
"current_release_date": "2025-11-12T10:35:09Z",
"generator": {
"date": "2025-11-12T10:35:09Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:4074-1",
"initial_release_date": "2025-11-12T10:35:09Z",
"revision_history": [
{
"date": "2025-11-12T10:35:09Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150400.3.53.1.aarch64",
"product": {
"name": "buildah-1.35.5-150400.3.53.1.aarch64",
"product_id": "buildah-1.35.5-150400.3.53.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150400.3.53.1.i586",
"product": {
"name": "buildah-1.35.5-150400.3.53.1.i586",
"product_id": "buildah-1.35.5-150400.3.53.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150400.3.53.1.ppc64le",
"product": {
"name": "buildah-1.35.5-150400.3.53.1.ppc64le",
"product_id": "buildah-1.35.5-150400.3.53.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150400.3.53.1.s390x",
"product": {
"name": "buildah-1.35.5-150400.3.53.1.s390x",
"product_id": "buildah-1.35.5-150400.3.53.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150400.3.53.1.x86_64",
"product": {
"name": "buildah-1.35.5-150400.3.53.1.x86_64",
"product_id": "buildah-1.35.5-150400.3.53.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150400.3.53.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.5-150400.3.53.1.aarch64"
},
"product_reference": "buildah-1.35.5-150400.3.53.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150400.3.53.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.5-150400.3.53.1.x86_64"
},
"product_reference": "buildah-1.35.5-150400.3.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150400.3.53.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.aarch64"
},
"product_reference": "buildah-1.35.5-150400.3.53.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150400.3.53.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.x86_64"
},
"product_reference": "buildah-1.35.5-150400.3.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150400.3.53.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.aarch64"
},
"product_reference": "buildah-1.35.5-150400.3.53.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150400.3.53.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.ppc64le"
},
"product_reference": "buildah-1.35.5-150400.3.53.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150400.3.53.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.s390x"
},
"product_reference": "buildah-1.35.5-150400.3.53.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150400.3.53.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.x86_64"
},
"product_reference": "buildah-1.35.5-150400.3.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150400.3.53.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.5-150400.3.53.1.ppc64le"
},
"product_reference": "buildah-1.35.5-150400.3.53.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150400.3.53.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.5-150400.3.53.1.x86_64"
},
"product_reference": "buildah-1.35.5-150400.3.53.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.5-150400.3.53.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.5-150400.3.53.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.5-150400.3.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.5-150400.3.53.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.5-150400.3.53.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.5-150400.3.53.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.5-150400.3.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.5-150400.3.53.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.5-150400.3.53.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.5-150400.3.53.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.5-150400.3.53.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.5-150400.3.53.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.5-150400.3.53.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T10:35:09Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2025:4075-1
Vulnerability from csaf_suse - Published: 2025-11-12 10:35 - Updated: 2025-11-12 10:35Summary
Security update for buildah
Severity
Important
Notes
Title of the patch: Security update for buildah
Description of the patch: This update for buildah fixes the following issues:
- CVE-2025-52881: Fixed container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files (bsc#1253096)
Other fixes:
- podman and buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)
Patchnames: SUSE-2025-4075,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-4075,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-4075,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-4075,SUSE-Storage-7.1-2025-4075
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah fixes the following issues:\n\n- CVE-2025-52881: Fixed container breakouts by bypassing runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1253096)\n\nOther fixes:\n \n- podman and buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-4075,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-4075,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-4075,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-4075,SUSE-Storage-7.1-2025-4075",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_4075-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:4075-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20254075-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:4075-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023263.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252543",
"url": "https://bugzilla.suse.com/1252543"
},
{
"category": "self",
"summary": "SUSE Bug 1253096",
"url": "https://bugzilla.suse.com/1253096"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for buildah",
"tracking": {
"current_release_date": "2025-11-12T10:35:24Z",
"generator": {
"date": "2025-11-12T10:35:24Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:4075-1",
"initial_release_date": "2025-11-12T10:35:24Z",
"revision_history": [
{
"date": "2025-11-12T10:35:24Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150300.8.46.1.aarch64",
"product": {
"name": "buildah-1.35.5-150300.8.46.1.aarch64",
"product_id": "buildah-1.35.5-150300.8.46.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150300.8.46.1.i586",
"product": {
"name": "buildah-1.35.5-150300.8.46.1.i586",
"product_id": "buildah-1.35.5-150300.8.46.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150300.8.46.1.ppc64le",
"product": {
"name": "buildah-1.35.5-150300.8.46.1.ppc64le",
"product_id": "buildah-1.35.5-150300.8.46.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150300.8.46.1.s390x",
"product": {
"name": "buildah-1.35.5-150300.8.46.1.s390x",
"product_id": "buildah-1.35.5-150300.8.46.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150300.8.46.1.x86_64",
"product": {
"name": "buildah-1.35.5-150300.8.46.1.x86_64",
"product_id": "buildah-1.35.5-150300.8.46.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150300.8.46.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.aarch64"
},
"product_reference": "buildah-1.35.5-150300.8.46.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150300.8.46.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.x86_64"
},
"product_reference": "buildah-1.35.5-150300.8.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150300.8.46.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.aarch64"
},
"product_reference": "buildah-1.35.5-150300.8.46.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150300.8.46.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.ppc64le"
},
"product_reference": "buildah-1.35.5-150300.8.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150300.8.46.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.s390x"
},
"product_reference": "buildah-1.35.5-150300.8.46.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150300.8.46.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.x86_64"
},
"product_reference": "buildah-1.35.5-150300.8.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150300.8.46.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.5-150300.8.46.1.ppc64le"
},
"product_reference": "buildah-1.35.5-150300.8.46.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150300.8.46.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.5-150300.8.46.1.x86_64"
},
"product_reference": "buildah-1.35.5-150300.8.46.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150300.8.46.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:buildah-1.35.5-150300.8.46.1.aarch64"
},
"product_reference": "buildah-1.35.5-150300.8.46.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150300.8.46.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:buildah-1.35.5-150300.8.46.1.x86_64"
},
"product_reference": "buildah-1.35.5-150300.8.46.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.5-150300.8.46.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.5-150300.8.46.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.5-150300.8.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.5-150300.8.46.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.5-150300.8.46.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.5-150300.8.46.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.5-150300.8.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.5-150300.8.46.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.5-150300.8.46.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.5-150300.8.46.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.5-150300.8.46.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.5-150300.8.46.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.5-150300.8.46.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T10:35:24Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2025:21136-1
Vulnerability from csaf_suse - Published: 2025-11-20 16:43 - Updated: 2025-11-20 16:43Summary
Security update for runc
Severity
Important
Notes
Title of the patch: Security update for runc
Description of the patch: This update for runc fixes the following issues:
- Update to runc v1.3.3:
* CVE-2025-31133, CVE-2025-52565, CVE-2025-52881: Fixed container breakouts by bypassing
runc's restrictions for writing to arbitrary /proc files (bsc#1252232)
Patchnames: SUSE-SLES-16.0-46
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for runc fixes the following issues:\n\n- Update to runc v1.3.3:\n * CVE-2025-31133, CVE-2025-52565, CVE-2025-52881: Fixed container breakouts by bypassing\n runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1252232)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-46",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_21136-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:21136-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202521136-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:21136-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023516.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252110",
"url": "https://bugzilla.suse.com/1252110"
},
{
"category": "self",
"summary": "SUSE Bug 1252232",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for runc",
"tracking": {
"current_release_date": "2025-11-20T16:43:58Z",
"generator": {
"date": "2025-11-20T16:43:58Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:21136-1",
"initial_release_date": "2025-11-20T16:43:58Z",
"revision_history": [
{
"date": "2025-11-20T16:43:58Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-160000.1.1.aarch64",
"product": {
"name": "runc-1.3.3-160000.1.1.aarch64",
"product_id": "runc-1.3.3-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-160000.1.1.ppc64le",
"product": {
"name": "runc-1.3.3-160000.1.1.ppc64le",
"product_id": "runc-1.3.3-160000.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-160000.1.1.s390x",
"product": {
"name": "runc-1.3.3-160000.1.1.s390x",
"product_id": "runc-1.3.3-160000.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-160000.1.1.x86_64",
"product": {
"name": "runc-1.3.3-160000.1.1.x86_64",
"product_id": "runc-1.3.3-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.aarch64"
},
"product_reference": "runc-1.3.3-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.ppc64le"
},
"product_reference": "runc-1.3.3-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.s390x"
},
"product_reference": "runc-1.3.3-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.x86_64"
},
"product_reference": "runc-1.3.3-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.aarch64"
},
"product_reference": "runc-1.3.3-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.ppc64le"
},
"product_reference": "runc-1.3.3-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.s390x"
},
"product_reference": "runc-1.3.3-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.x86_64"
},
"product_reference": "runc-1.3.3-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-20T16:43:58Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-20T16:43:58Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:runc-1.3.3-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:runc-1.3.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-20T16:43:58Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2026:20214-1
Vulnerability from csaf_suse - Published: 2026-01-30 14:35 - Updated: 2026-01-30 14:35Summary
Security update for alloy
Severity
Important
Notes
Title of the patch: Security update for alloy
Description of the patch: This update for alloy fixes the following issues:
Update to 1.12.2:
Security fixes:
- CVE-2025-68156: github.com/expr-lang/expr/builtin: Fixed potential DoS via unbounded recursion (bsc#1255333):
- CVE-2025-31133, CVE-2025-52565, CVE-2025-52881: github.com/opencontainers/runc: Fixed container
breakouts by bypassing runc's restrictions for writing to arbitrary /proc files (bsc#1255074)
Other fixes:
- Add missing configuration parameter
deployment_name_from_replicaset to k8sattributes processor
(5b90a9d) (@dehaansa)
- database_observability: Fix schema_details collector to fetch
column definitions with case sensitive table names (#4872)
(560dff4) (@jharvey10, @fridgepoet)
- deps: Update jose2go to 1.7.0 (#4858) (dfdd341) (@jharvey10)
- deps: Update npm dependencies [backport] (#5201) (8e06c26)
(@jharvey10)
- Ensure the squid exporter wrapper properly brackets ipv6
addresses [backport] (#5205) (e329cc6) (@dehaansa)
- Preserve meta labels in loki.source.podlogs (#5097) (ab4b21e)
(@kalleep)
- Prevent panic in import.git when update fails [backport]
(#5204) (c82fbae) (@dehaansa, @jharvey10)
- show correct fallback alloy version instead of v1.13.0
(#5110) (b72be99) (@dehaansa, @jharvey10)
Patchnames: SUSE-SLES-16.0-225
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for alloy",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for alloy fixes the following issues:\n\nUpdate to 1.12.2:\n\nSecurity fixes:\n\n- CVE-2025-68156: github.com/expr-lang/expr/builtin: Fixed potential DoS via unbounded recursion (bsc#1255333):\n- CVE-2025-31133, CVE-2025-52565, CVE-2025-52881: github.com/opencontainers/runc: Fixed container\n breakouts by bypassing runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1255074)\n\nOther fixes:\n\n - Add missing configuration parameter\n deployment_name_from_replicaset to k8sattributes processor\n (5b90a9d) (@dehaansa)\n - database_observability: Fix schema_details collector to fetch\n column definitions with case sensitive table names (#4872)\n (560dff4) (@jharvey10, @fridgepoet)\n - deps: Update jose2go to 1.7.0 (#4858) (dfdd341) (@jharvey10)\n - deps: Update npm dependencies [backport] (#5201) (8e06c26)\n (@jharvey10)\n - Ensure the squid exporter wrapper properly brackets ipv6\n addresses [backport] (#5205) (e329cc6) (@dehaansa)\n - Preserve meta labels in loki.source.podlogs (#5097) (ab4b21e)\n (@kalleep)\n - Prevent panic in import.git when update fails [backport]\n (#5204) (c82fbae) (@dehaansa, @jharvey10)\n - show correct fallback alloy version instead of v1.13.0\n (#5110) (b72be99) (@dehaansa, @jharvey10)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-225",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20214-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20214-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620214-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20214-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024072.html"
},
{
"category": "self",
"summary": "SUSE Bug 1255074",
"url": "https://bugzilla.suse.com/1255074"
},
{
"category": "self",
"summary": "SUSE Bug 1255333",
"url": "https://bugzilla.suse.com/1255333"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68156 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68156/"
}
],
"title": "Security update for alloy",
"tracking": {
"current_release_date": "2026-01-30T14:35:10Z",
"generator": {
"date": "2026-01-30T14:35:10Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20214-1",
"initial_release_date": "2026-01-30T14:35:10Z",
"revision_history": [
{
"date": "2026-01-30T14:35:10Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.12.2-160000.1.1.aarch64",
"product": {
"name": "alloy-1.12.2-160000.1.1.aarch64",
"product_id": "alloy-1.12.2-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.12.2-160000.1.1.ppc64le",
"product": {
"name": "alloy-1.12.2-160000.1.1.ppc64le",
"product_id": "alloy-1.12.2-160000.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.12.2-160000.1.1.s390x",
"product": {
"name": "alloy-1.12.2-160000.1.1.s390x",
"product_id": "alloy-1.12.2-160000.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.12.2-160000.1.1.x86_64",
"product": {
"name": "alloy-1.12.2-160000.1.1.x86_64",
"product_id": "alloy-1.12.2-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.12.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64"
},
"product_reference": "alloy-1.12.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.12.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le"
},
"product_reference": "alloy-1.12.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.12.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x"
},
"product_reference": "alloy-1.12.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.12.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64"
},
"product_reference": "alloy-1.12.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.12.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64"
},
"product_reference": "alloy-1.12.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.12.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le"
},
"product_reference": "alloy-1.12.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.12.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x"
},
"product_reference": "alloy-1.12.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.12.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
},
"product_reference": "alloy-1.12.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-30T14:35:10Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-30T14:35:10Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-30T14:35:10Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
},
{
"cve": "CVE-2025-68156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68156"
}
],
"notes": [
{
"category": "general",
"text": "Expr is an expression language and expression evaluation for Go. Prior to version 1.17.7, several builtin functions in Expr, including `flatten`, `min`, `max`, `mean`, and `median`, perform recursive traversal over user-provided data structures without enforcing a maximum recursion depth. If the evaluation environment contains deeply nested or cyclic data structures, these functions may recurse indefinitely until exceed the Go runtime stack limit. This results in a stack overflow panic, causing the host application to crash. While exploitability depends on whether an attacker can influence or inject cyclic or pathologically deep data into the\nevaluation environment, this behavior represents a denial-of-service (DoS) risk and affects overall library robustness. Instead of returning a recoverable evaluation error, the process may terminate unexpectedly. In affected versions, evaluation of expressions that invoke certain builtin functions on untrusted or insufficiently validated data structures can lead to a process-level crash due to stack exhaustion. This issue is most relevant in scenarios where Expr is used to evaluate expressions against externally supplied or dynamically constructed environments; cyclic references (directly or indirectly) can be introduced into arrays, maps, or structs; and there are no application-level safeguards preventing deeply nested input data. In typical use cases with controlled, acyclic data, the issue may not manifest. However, when present, the resulting panic can be used to reliably crash the application, constituting a denial of service. The issue has been fixed in the v1.17.7 versions of Expr. The patch introduces a maximum recursion depth limit for affected builtin functions. When this limit is exceeded, evaluation aborts gracefully and returns a descriptive error instead of panicking. Additionally, the maximum depth can be customized by users via `builtin.MaxDepth`, allowing applications with legitimate deep structures to raise the limit in a controlled manner. Users are strongly encouraged to upgrade to the patched release, which includes both the recursion guard and comprehensive test coverage to prevent regressions. For users who cannot immediately upgrade, some mitigations are recommended. Ensure that evaluation environments cannot contain cyclic references, validate or sanitize externally supplied data structures before passing them to Expr, and/or wrap expression evaluation with panic recovery to prevent a full process crash (as a last-resort defensive measure). These workarounds reduce risk but do not fully eliminate the issue without the patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68156",
"url": "https://www.suse.com/security/cve/CVE-2025-68156"
},
{
"category": "external",
"summary": "SUSE Bug 1255330 for CVE-2025-68156",
"url": "https://bugzilla.suse.com/1255330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.12.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.12.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-30T14:35:10Z",
"details": "important"
}
],
"title": "CVE-2025-68156"
}
]
}
SUSE-SU-2025:21038-1
Vulnerability from csaf_suse - Published: 2025-11-10 14:47 - Updated: 2025-11-10 14:47Summary
Security update for podman
Severity
Moderate
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: Fixed various container breakouts (bsc#1252376):
- Fixed podman & buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)
Patchnames: SUSE-SLE-Micro-6.0-513
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: Fixed various container breakouts (bsc#1252376):\n- Fixed podman \u0026 buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-513",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_21038-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:21038-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202521038-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:21038-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023395.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252376",
"url": "https://bugzilla.suse.com/1252376"
},
{
"category": "self",
"summary": "SUSE Bug 1252543",
"url": "https://bugzilla.suse.com/1252543"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2025-11-10T14:47:12Z",
"generator": {
"date": "2025-11-10T14:47:12Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:21038-1",
"initial_release_date": "2025-11-10T14:47:12Z",
"revision_history": [
{
"date": "2025-11-10T14:47:12Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-9.1.aarch64",
"product": {
"name": "podman-4.9.5-9.1.aarch64",
"product_id": "podman-4.9.5-9.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-9.1.aarch64",
"product": {
"name": "podman-remote-4.9.5-9.1.aarch64",
"product_id": "podman-remote-4.9.5-9.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-9.1.aarch64",
"product": {
"name": "podmansh-4.9.5-9.1.aarch64",
"product_id": "podmansh-4.9.5-9.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-4.9.5-9.1.noarch",
"product": {
"name": "podman-docker-4.9.5-9.1.noarch",
"product_id": "podman-docker-4.9.5-9.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-9.1.s390x",
"product": {
"name": "podman-4.9.5-9.1.s390x",
"product_id": "podman-4.9.5-9.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-9.1.s390x",
"product": {
"name": "podman-remote-4.9.5-9.1.s390x",
"product_id": "podman-remote-4.9.5-9.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-9.1.s390x",
"product": {
"name": "podmansh-4.9.5-9.1.s390x",
"product_id": "podmansh-4.9.5-9.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-9.1.x86_64",
"product": {
"name": "podman-4.9.5-9.1.x86_64",
"product_id": "podman-4.9.5-9.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-9.1.x86_64",
"product": {
"name": "podman-remote-4.9.5-9.1.x86_64",
"product_id": "podman-remote-4.9.5-9.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-9.1.x86_64",
"product": {
"name": "podmansh-4.9.5-9.1.x86_64",
"product_id": "podmansh-4.9.5-9.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-9.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:podman-4.9.5-9.1.aarch64"
},
"product_reference": "podman-4.9.5-9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-9.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:podman-4.9.5-9.1.s390x"
},
"product_reference": "podman-4.9.5-9.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-9.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:podman-4.9.5-9.1.x86_64"
},
"product_reference": "podman-4.9.5-9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-9.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:podman-docker-4.9.5-9.1.noarch"
},
"product_reference": "podman-docker-4.9.5-9.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-9.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-9.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.s390x"
},
"product_reference": "podman-remote-4.9.5-9.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-9.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-9.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.aarch64"
},
"product_reference": "podmansh-4.9.5-9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-9.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.s390x"
},
"product_reference": "podmansh-4.9.5-9.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-9.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.x86_64"
},
"product_reference": "podmansh-4.9.5-9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podman-docker-4.9.5-9.1.noarch",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podman-docker-4.9.5-9.1.noarch",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podman-docker-4.9.5-9.1.noarch",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-10T14:47:12Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podman-docker-4.9.5-9.1.noarch",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podman-docker-4.9.5-9.1.noarch",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podman-docker-4.9.5-9.1.noarch",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-10T14:47:12Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podman-docker-4.9.5-9.1.noarch",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podman-docker-4.9.5-9.1.noarch",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podman-docker-4.9.5-9.1.noarch",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podman-remote-4.9.5-9.1.x86_64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.aarch64",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.s390x",
"SUSE Linux Micro 6.0:podmansh-4.9.5-9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-10T14:47:12Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2026:20116-1
Vulnerability from csaf_suse - Published: 2026-01-21 11:08 - Updated: 2026-01-21 11:08Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files (bsc#1252376).
- CVE-2025-9566: kube play command may overwrite host files (bsc#1249154).
Patchnames: SUSE-SL-Micro-6.2-161
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.1 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: container breakouts by bypassing runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1252376).\n- CVE-2025-9566: kube play command may overwrite host files (bsc#1249154).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SL-Micro-6.2-161",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20116-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20116-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620116-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20116-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023875.html"
},
{
"category": "self",
"summary": "SUSE Bug 1249154",
"url": "https://bugzilla.suse.com/1249154"
},
{
"category": "self",
"summary": "SUSE Bug 1252376",
"url": "https://bugzilla.suse.com/1252376"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-9566 page",
"url": "https://www.suse.com/security/cve/CVE-2025-9566/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2026-01-21T11:08:51Z",
"generator": {
"date": "2026-01-21T11:08:51Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20116-1",
"initial_release_date": "2026-01-21T11:08:51Z",
"revision_history": [
{
"date": "2026-01-21T11:08:51Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.3.1.aarch64",
"product": {
"name": "podman-5.4.2-160000.3.1.aarch64",
"product_id": "podman-5.4.2-160000.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.3.1.aarch64",
"product": {
"name": "podman-remote-5.4.2-160000.3.1.aarch64",
"product_id": "podman-remote-5.4.2-160000.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.3.1.aarch64",
"product": {
"name": "podmansh-5.4.2-160000.3.1.aarch64",
"product_id": "podmansh-5.4.2-160000.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-5.4.2-160000.3.1.noarch",
"product": {
"name": "podman-docker-5.4.2-160000.3.1.noarch",
"product_id": "podman-docker-5.4.2-160000.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.3.1.ppc64le",
"product": {
"name": "podman-5.4.2-160000.3.1.ppc64le",
"product_id": "podman-5.4.2-160000.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.3.1.ppc64le",
"product": {
"name": "podman-remote-5.4.2-160000.3.1.ppc64le",
"product_id": "podman-remote-5.4.2-160000.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.3.1.ppc64le",
"product": {
"name": "podmansh-5.4.2-160000.3.1.ppc64le",
"product_id": "podmansh-5.4.2-160000.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.3.1.s390x",
"product": {
"name": "podman-5.4.2-160000.3.1.s390x",
"product_id": "podman-5.4.2-160000.3.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.3.1.s390x",
"product": {
"name": "podman-remote-5.4.2-160000.3.1.s390x",
"product_id": "podman-remote-5.4.2-160000.3.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.3.1.s390x",
"product": {
"name": "podmansh-5.4.2-160000.3.1.s390x",
"product_id": "podmansh-5.4.2-160000.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5.4.2-160000.3.1.x86_64",
"product": {
"name": "podman-5.4.2-160000.3.1.x86_64",
"product_id": "podman-5.4.2-160000.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-5.4.2-160000.3.1.x86_64",
"product": {
"name": "podman-remote-5.4.2-160000.3.1.x86_64",
"product_id": "podman-remote-5.4.2-160000.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-5.4.2-160000.3.1.x86_64",
"product": {
"name": "podmansh-5.4.2-160000.3.1.x86_64",
"product_id": "podmansh-5.4.2-160000.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.2",
"product": {
"name": "SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:transactional"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.3.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64"
},
"product_reference": "podman-5.4.2-160000.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.3.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le"
},
"product_reference": "podman-5.4.2-160000.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.3.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x"
},
"product_reference": "podman-5.4.2-160000.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5.4.2-160000.3.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64"
},
"product_reference": "podman-5.4.2-160000.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-5.4.2-160000.3.1.noarch as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch"
},
"product_reference": "podman-docker-5.4.2-160000.3.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.3.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64"
},
"product_reference": "podman-remote-5.4.2-160000.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.3.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le"
},
"product_reference": "podman-remote-5.4.2-160000.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.3.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x"
},
"product_reference": "podman-remote-5.4.2-160000.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5.4.2-160000.3.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64"
},
"product_reference": "podman-remote-5.4.2-160000.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.3.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64"
},
"product_reference": "podmansh-5.4.2-160000.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.3.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le"
},
"product_reference": "podmansh-5.4.2-160000.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.3.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x"
},
"product_reference": "podmansh-5.4.2-160000.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-5.4.2-160000.3.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
},
"product_reference": "podmansh-5.4.2-160000.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-21T11:08:51Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-21T11:08:51Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-21T11:08:51Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
},
{
"cve": "CVE-2025-9566",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-9566"
}
],
"notes": [
{
"category": "general",
"text": "There\u0027s a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file.\n\nBinary-Affected: podman\nUpstream-version-introduced: v4.0.0\nUpstream-version-fixed: v5.6.1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-9566",
"url": "https://www.suse.com/security/cve/CVE-2025-9566"
},
{
"category": "external",
"summary": "SUSE Bug 1249154 for CVE-2025-9566",
"url": "https://bugzilla.suse.com/1249154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podman-docker-5.4.2-160000.3.1.noarch",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podman-remote-5.4.2-160000.3.1.x86_64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.aarch64",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.ppc64le",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.s390x",
"SUSE Linux Micro 6.2:podmansh-5.4.2-160000.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-21T11:08:51Z",
"details": "important"
}
],
"title": "CVE-2025-9566"
}
]
}
SUSE-SU-2026:0327-1
Vulnerability from csaf_suse - Published: 2026-01-28 15:38 - Updated: 2026-01-28 15:38Summary
Security update for alloy
Severity
Important
Notes
Title of the patch: Security update for alloy
Description of the patch: This update for alloy fixes the following issues:
Update to 1.12.2:
Security fixes:
- CVE-2025-68156: github.com/expr-lang/expr/builtin: Fixed potential DoS via unbounded recursion (bsc#1255333):
- CVE-2025-31133, CVE-2025-52565, CVE-2025-52881: github.com/opencontainers/runc: Fixed container
breakouts by bypassing runc's restrictions for writing to arbitrary /proc files (bsc#1255074)
Other fixes:
- Add missing configuration parameter
deployment_name_from_replicaset to k8sattributes processor
(5b90a9d) (@dehaansa)
- database_observability: Fix schema_details collector to fetch
column definitions with case sensitive table names (#4872)
(560dff4) (@jharvey10, @fridgepoet)
- deps: Update jose2go to 1.7.0 (#4858) (dfdd341) (@jharvey10)
- deps: Update npm dependencies [backport] (#5201) (8e06c26)
(@jharvey10)
- Ensure the squid exporter wrapper properly brackets ipv6
addresses [backport] (#5205) (e329cc6) (@dehaansa)
- Preserve meta labels in loki.source.podlogs (#5097) (ab4b21e)
(@kalleep)
- Prevent panic in import.git when update fails [backport]
(#5204) (c82fbae) (@dehaansa, @jharvey10)
- show correct fallback alloy version instead of v1.13.0
(#5110) (b72be99) (@dehaansa, @jharvey10)
Patchnames: SUSE-2026-327,SUSE-SLE-Module-Basesystem-15-SP7-2026-327
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for alloy",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for alloy fixes the following issues:\n\nUpdate to 1.12.2:\n\nSecurity fixes:\n\n- CVE-2025-68156: github.com/expr-lang/expr/builtin: Fixed potential DoS via unbounded recursion (bsc#1255333):\n- CVE-2025-31133, CVE-2025-52565, CVE-2025-52881: github.com/opencontainers/runc: Fixed container\n breakouts by bypassing runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1255074)\n\nOther fixes:\n\n - Add missing configuration parameter\n deployment_name_from_replicaset to k8sattributes processor\n (5b90a9d) (@dehaansa)\n - database_observability: Fix schema_details collector to fetch\n column definitions with case sensitive table names (#4872)\n (560dff4) (@jharvey10, @fridgepoet)\n - deps: Update jose2go to 1.7.0 (#4858) (dfdd341) (@jharvey10)\n - deps: Update npm dependencies [backport] (#5201) (8e06c26)\n (@jharvey10)\n - Ensure the squid exporter wrapper properly brackets ipv6\n addresses [backport] (#5205) (e329cc6) (@dehaansa)\n - Preserve meta labels in loki.source.podlogs (#5097) (ab4b21e)\n (@kalleep)\n - Prevent panic in import.git when update fails [backport]\n (#5204) (c82fbae) (@dehaansa, @jharvey10)\n - show correct fallback alloy version instead of v1.13.0\n (#5110) (b72be99) (@dehaansa, @jharvey10)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-327,SUSE-SLE-Module-Basesystem-15-SP7-2026-327",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_0327-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:0327-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260327-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:0327-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023974.html"
},
{
"category": "self",
"summary": "SUSE Bug 1255074",
"url": "https://bugzilla.suse.com/1255074"
},
{
"category": "self",
"summary": "SUSE Bug 1255333",
"url": "https://bugzilla.suse.com/1255333"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68156 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68156/"
}
],
"title": "Security update for alloy",
"tracking": {
"current_release_date": "2026-01-28T15:38:58Z",
"generator": {
"date": "2026-01-28T15:38:58Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:0327-1",
"initial_release_date": "2026-01-28T15:38:58Z",
"revision_history": [
{
"date": "2026-01-28T15:38:58Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.12.2-150700.15.15.1.aarch64",
"product": {
"name": "alloy-1.12.2-150700.15.15.1.aarch64",
"product_id": "alloy-1.12.2-150700.15.15.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.12.2-150700.15.15.1.ppc64le",
"product": {
"name": "alloy-1.12.2-150700.15.15.1.ppc64le",
"product_id": "alloy-1.12.2-150700.15.15.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.12.2-150700.15.15.1.s390x",
"product": {
"name": "alloy-1.12.2-150700.15.15.1.s390x",
"product_id": "alloy-1.12.2-150700.15.15.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.12.2-150700.15.15.1.x86_64",
"product": {
"name": "alloy-1.12.2-150700.15.15.1.x86_64",
"product_id": "alloy-1.12.2-150700.15.15.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.12.2-150700.15.15.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64"
},
"product_reference": "alloy-1.12.2-150700.15.15.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.12.2-150700.15.15.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le"
},
"product_reference": "alloy-1.12.2-150700.15.15.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.12.2-150700.15.15.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x"
},
"product_reference": "alloy-1.12.2-150700.15.15.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.12.2-150700.15.15.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
},
"product_reference": "alloy-1.12.2-150700.15.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-28T15:38:58Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-28T15:38:58Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-28T15:38:58Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
},
{
"cve": "CVE-2025-68156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68156"
}
],
"notes": [
{
"category": "general",
"text": "Expr is an expression language and expression evaluation for Go. Prior to version 1.17.7, several builtin functions in Expr, including `flatten`, `min`, `max`, `mean`, and `median`, perform recursive traversal over user-provided data structures without enforcing a maximum recursion depth. If the evaluation environment contains deeply nested or cyclic data structures, these functions may recurse indefinitely until exceed the Go runtime stack limit. This results in a stack overflow panic, causing the host application to crash. While exploitability depends on whether an attacker can influence or inject cyclic or pathologically deep data into the\nevaluation environment, this behavior represents a denial-of-service (DoS) risk and affects overall library robustness. Instead of returning a recoverable evaluation error, the process may terminate unexpectedly. In affected versions, evaluation of expressions that invoke certain builtin functions on untrusted or insufficiently validated data structures can lead to a process-level crash due to stack exhaustion. This issue is most relevant in scenarios where Expr is used to evaluate expressions against externally supplied or dynamically constructed environments; cyclic references (directly or indirectly) can be introduced into arrays, maps, or structs; and there are no application-level safeguards preventing deeply nested input data. In typical use cases with controlled, acyclic data, the issue may not manifest. However, when present, the resulting panic can be used to reliably crash the application, constituting a denial of service. The issue has been fixed in the v1.17.7 versions of Expr. The patch introduces a maximum recursion depth limit for affected builtin functions. When this limit is exceeded, evaluation aborts gracefully and returns a descriptive error instead of panicking. Additionally, the maximum depth can be customized by users via `builtin.MaxDepth`, allowing applications with legitimate deep structures to raise the limit in a controlled manner. Users are strongly encouraged to upgrade to the patched release, which includes both the recursion guard and comprehensive test coverage to prevent regressions. For users who cannot immediately upgrade, some mitigations are recommended. Ensure that evaluation environments cannot contain cyclic references, validate or sanitize externally supplied data structures before passing them to Expr, and/or wrap expression evaluation with panic recovery to prevent a full process crash (as a last-resort defensive measure). These workarounds reduce risk but do not fully eliminate the issue without the patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68156",
"url": "https://www.suse.com/security/cve/CVE-2025-68156"
},
{
"category": "external",
"summary": "SUSE Bug 1255330 for CVE-2025-68156",
"url": "https://bugzilla.suse.com/1255330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:alloy-1.12.2-150700.15.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-28T15:38:58Z",
"details": "important"
}
],
"title": "CVE-2025-68156"
}
]
}
SUSE-SU-2025:4080-1
Vulnerability from csaf_suse - Published: 2025-11-12 12:49 - Updated: 2025-11-12 12:49Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions (bsc#1252376)
- CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252376)
- CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252376)
Other fixes:
- Fix: podman and buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)
- Add symlink to catatonit in /usr/libexec/podman (bsc#1248988)
Patchnames: SUSE-2025-4080,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-4080,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-4080,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-4080,SUSE-SUSE-MicroOS-5.1-2025-4080,SUSE-SUSE-MicroOS-5.2-2025-4080,SUSE-Storage-7.1-2025-4080
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- CVE-2025-31133: Fixed container escape via \u0027masked path\u0027 abuse due to mount race conditions (bsc#1252376)\n- CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252376)\n- CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252376)\n \nOther fixes:\n \n- Fix: podman and buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)\n- Add symlink to catatonit in /usr/libexec/podman (bsc#1248988)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-4080,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-4080,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-4080,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-4080,SUSE-SUSE-MicroOS-5.1-2025-4080,SUSE-SUSE-MicroOS-5.2-2025-4080,SUSE-Storage-7.1-2025-4080",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_4080-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:4080-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20254080-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:4080-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023272.html"
},
{
"category": "self",
"summary": "SUSE Bug 1248988",
"url": "https://bugzilla.suse.com/1248988"
},
{
"category": "self",
"summary": "SUSE Bug 1252376",
"url": "https://bugzilla.suse.com/1252376"
},
{
"category": "self",
"summary": "SUSE Bug 1252543",
"url": "https://bugzilla.suse.com/1252543"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2025-11-12T12:49:06Z",
"generator": {
"date": "2025-11-12T12:49:06Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:4080-1",
"initial_release_date": "2025-11-12T12:49:06Z",
"revision_history": [
{
"date": "2025-11-12T12:49:06Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.63.2.aarch64",
"product": {
"name": "podman-4.9.5-150300.9.63.2.aarch64",
"product_id": "podman-4.9.5-150300.9.63.2.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.63.2.aarch64",
"product": {
"name": "podman-remote-4.9.5-150300.9.63.2.aarch64",
"product_id": "podman-remote-4.9.5-150300.9.63.2.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.63.2.aarch64",
"product": {
"name": "podmansh-4.9.5-150300.9.63.2.aarch64",
"product_id": "podmansh-4.9.5-150300.9.63.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.63.2.i586",
"product": {
"name": "podman-4.9.5-150300.9.63.2.i586",
"product_id": "podman-4.9.5-150300.9.63.2.i586"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.63.2.i586",
"product": {
"name": "podman-remote-4.9.5-150300.9.63.2.i586",
"product_id": "podman-remote-4.9.5-150300.9.63.2.i586"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.63.2.i586",
"product": {
"name": "podmansh-4.9.5-150300.9.63.2.i586",
"product_id": "podmansh-4.9.5-150300.9.63.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-4.9.5-150300.9.63.2.noarch",
"product": {
"name": "podman-docker-4.9.5-150300.9.63.2.noarch",
"product_id": "podman-docker-4.9.5-150300.9.63.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.63.2.ppc64le",
"product": {
"name": "podman-4.9.5-150300.9.63.2.ppc64le",
"product_id": "podman-4.9.5-150300.9.63.2.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.63.2.ppc64le",
"product": {
"name": "podman-remote-4.9.5-150300.9.63.2.ppc64le",
"product_id": "podman-remote-4.9.5-150300.9.63.2.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.63.2.ppc64le",
"product": {
"name": "podmansh-4.9.5-150300.9.63.2.ppc64le",
"product_id": "podmansh-4.9.5-150300.9.63.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.63.2.s390x",
"product": {
"name": "podman-4.9.5-150300.9.63.2.s390x",
"product_id": "podman-4.9.5-150300.9.63.2.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.63.2.s390x",
"product": {
"name": "podman-remote-4.9.5-150300.9.63.2.s390x",
"product_id": "podman-remote-4.9.5-150300.9.63.2.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.63.2.s390x",
"product": {
"name": "podmansh-4.9.5-150300.9.63.2.s390x",
"product_id": "podmansh-4.9.5-150300.9.63.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.63.2.x86_64",
"product": {
"name": "podman-4.9.5-150300.9.63.2.x86_64",
"product_id": "podman-4.9.5-150300.9.63.2.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.63.2.x86_64",
"product": {
"name": "podman-remote-4.9.5-150300.9.63.2.x86_64",
"product_id": "podman-remote-4.9.5-150300.9.63.2.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.63.2.x86_64",
"product": {
"name": "podmansh-4.9.5-150300.9.63.2.x86_64",
"product_id": "podmansh-4.9.5-150300.9.63.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.2"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.63.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.63.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.63.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le"
},
"product_reference": "podman-4.9.5-150300.9.63.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x"
},
"product_reference": "podman-4.9.5-150300.9.63.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.63.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le"
},
"product_reference": "podman-4.9.5-150300.9.63.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.63.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.63.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.s390x as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x"
},
"product_reference": "podman-4.9.5-150300.9.63.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.63.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.s390x as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.63.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x"
},
"product_reference": "podman-4.9.5-150300.9.63.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.63.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.63.2.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.63.2.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.63.2.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.63.2.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.63.2.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T12:49:06Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T12:49:06Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T12:49:06Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2025:4073-2
Vulnerability from csaf_suse - Published: 2025-11-24 02:49 - Updated: 2025-11-24 02:49Summary
Security update for runc
Severity
Important
Notes
Title of the patch: Security update for runc
Description of the patch: This update for runc fixes the following issues:
Update to runc v1.3.3. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.3>. bsc#1252232
* CVE-2025-31133
* CVE-2025-52565
* CVE-2025-52881
Update to runc v1.3.2. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.2> bsc#1252110
- Includes an important fix for the CPUSet translation for cgroupv2.
Update to runc v1.3.1. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.1>
Update to runc v1.3.0. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.0>
Patchnames: SUSE-2025-4073,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-4073,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-4073,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-4073,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-4073,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-4073,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-4073,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-4073,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-4073,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-4073,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-4073,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-4073
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for runc fixes the following issues:\n\nUpdate to runc v1.3.3. Upstream changelog is available from\n\n \u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.3\u003e. bsc#1252232\n\n * CVE-2025-31133\n * CVE-2025-52565\n * CVE-2025-52881\n\nUpdate to runc v1.3.2. Upstream changelog is available from\n\n\u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.2\u003e bsc#1252110\n\n - Includes an important fix for the CPUSet translation for cgroupv2.\n\nUpdate to runc v1.3.1. Upstream changelog is available from\n\n\u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.1\u003e\n\nUpdate to runc v1.3.0. Upstream changelog is available from\n\n\u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.0\u003e",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-4073,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-4073,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-4073,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-4073,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-4073,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-4073,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-4073,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-4073,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-4073,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-4073,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-4073,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-4073",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_4073-2.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:4073-2",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20254073-2/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:4073-2",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023325.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252110",
"url": "https://bugzilla.suse.com/1252110"
},
{
"category": "self",
"summary": "SUSE Bug 1252232",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for runc",
"tracking": {
"current_release_date": "2025-11-24T02:49:00Z",
"generator": {
"date": "2025-11-24T02:49:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:4073-2",
"initial_release_date": "2025-11-24T02:49:00Z",
"revision_history": [
{
"date": "2025-11-24T02:49:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-150000.85.1.aarch64",
"product": {
"name": "runc-1.3.3-150000.85.1.aarch64",
"product_id": "runc-1.3.3-150000.85.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-150000.85.1.i586",
"product": {
"name": "runc-1.3.3-150000.85.1.i586",
"product_id": "runc-1.3.3-150000.85.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-150000.85.1.ppc64le",
"product": {
"name": "runc-1.3.3-150000.85.1.ppc64le",
"product_id": "runc-1.3.3-150000.85.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-150000.85.1.s390x",
"product": {
"name": "runc-1.3.3-150000.85.1.s390x",
"product_id": "runc-1.3.3-150000.85.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-150000.85.1.x86_64",
"product": {
"name": "runc-1.3.3-150000.85.1.x86_64",
"product_id": "runc-1.3.3-150000.85.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.ppc64le"
},
"product_reference": "runc-1.3.3-150000.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.s390x"
},
"product_reference": "runc-1.3.3-150000.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.ppc64le"
},
"product_reference": "runc-1.3.3-150000.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.s390x"
},
"product_reference": "runc-1.3.3-150000.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64"
},
"product_reference": "runc-1.3.3-150000.85.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.ppc64le"
},
"product_reference": "runc-1.3.3-150000.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.s390x"
},
"product_reference": "runc-1.3.3-150000.85.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.ppc64le"
},
"product_reference": "runc-1.3.3-150000.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.ppc64le"
},
"product_reference": "runc-1.3.3-150000.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.ppc64le"
},
"product_reference": "runc-1.3.3-150000.85.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-150000.85.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.x86_64"
},
"product_reference": "runc-1.3.3-150000.85.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-24T02:49:00Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-24T02:49:00Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:runc-1.3.3-150000.85.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:runc-1.3.3-150000.85.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-24T02:49:00Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2025:4076-1
Vulnerability from csaf_suse - Published: 2025-11-12 10:35 - Updated: 2025-11-12 10:35Summary
Security update for buildah
Severity
Important
Notes
Title of the patch: Security update for buildah
Description of the patch: This update for buildah fixes the following issues:
- CVE-2025-52881: Fixed container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files (bsc#1253096)
Patchnames: SUSE-2025-4076,SUSE-SLE-Module-Containers-15-SP6-2025-4076,SUSE-SLE-Module-Containers-15-SP7-2025-4076,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-4076,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-4076,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-4076,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-4076,openSUSE-SLE-15.6-2025-4076
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah fixes the following issues:\n\n- CVE-2025-52881: Fixed container breakouts by bypassing runc\u0027s restrictions for writing to arbitrary /proc files (bsc#1253096)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-4076,SUSE-SLE-Module-Containers-15-SP6-2025-4076,SUSE-SLE-Module-Containers-15-SP7-2025-4076,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-4076,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-4076,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-4076,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-4076,openSUSE-SLE-15.6-2025-4076",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_4076-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:4076-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20254076-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:4076-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023262.html"
},
{
"category": "self",
"summary": "SUSE Bug 1253096",
"url": "https://bugzilla.suse.com/1253096"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for buildah",
"tracking": {
"current_release_date": "2025-11-12T10:35:40Z",
"generator": {
"date": "2025-11-12T10:35:40Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:4076-1",
"initial_release_date": "2025-11-12T10:35:40Z",
"revision_history": [
{
"date": "2025-11-12T10:35:40Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150500.3.45.1.aarch64",
"product": {
"name": "buildah-1.35.5-150500.3.45.1.aarch64",
"product_id": "buildah-1.35.5-150500.3.45.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150500.3.45.1.i586",
"product": {
"name": "buildah-1.35.5-150500.3.45.1.i586",
"product_id": "buildah-1.35.5-150500.3.45.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150500.3.45.1.ppc64le",
"product": {
"name": "buildah-1.35.5-150500.3.45.1.ppc64le",
"product_id": "buildah-1.35.5-150500.3.45.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150500.3.45.1.s390x",
"product": {
"name": "buildah-1.35.5-150500.3.45.1.s390x",
"product_id": "buildah-1.35.5-150500.3.45.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.5-150500.3.45.1.x86_64",
"product": {
"name": "buildah-1.35.5-150500.3.45.1.x86_64",
"product_id": "buildah-1.35.5-150500.3.45.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.aarch64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.ppc64le"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.s390x"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.x86_64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.aarch64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.ppc64le"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.s390x"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.x86_64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:buildah-1.35.5-150500.3.45.1.aarch64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:buildah-1.35.5-150500.3.45.1.x86_64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.aarch64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.x86_64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.aarch64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.ppc64le"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.s390x"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.x86_64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:buildah-1.35.5-150500.3.45.1.ppc64le"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:buildah-1.35.5-150500.3.45.1.x86_64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.aarch64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.ppc64le"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.s390x"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.5-150500.3.45.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.x86_64"
},
"product_reference": "buildah-1.35.5-150500.3.45.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:buildah-1.35.5-150500.3.45.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:buildah-1.35.5-150500.3.45.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:buildah-1.35.5-150500.3.45.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:buildah-1.35.5-150500.3.45.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:buildah-1.35.5-150500.3.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:buildah-1.35.5-150500.3.45.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:buildah-1.35.5-150500.3.45.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.5-150500.3.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T10:35:40Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2025:4081-1
Vulnerability from csaf_suse - Published: 2025-11-12 12:49 - Updated: 2025-11-12 12:49Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions (bsc#1252376)
- CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252376)
- CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252376)
Other fixes:
- Fix: podman and buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)
Patchnames: SUSE-2025-4081,SUSE-SLE-Micro-5.5-2025-4081,SUSE-SLE-Module-Containers-15-SP6-2025-4081,SUSE-SLE-Module-Containers-15-SP7-2025-4081,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-4081,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-4081,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-4081,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-4081,openSUSE-SLE-15.6-2025-4081
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- CVE-2025-31133: Fixed container escape via \u0027masked path\u0027 abuse due to mount race conditions (bsc#1252376)\n- CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252376)\n- CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252376)\n \nOther fixes:\n \n- Fix: podman and buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-4081,SUSE-SLE-Micro-5.5-2025-4081,SUSE-SLE-Module-Containers-15-SP6-2025-4081,SUSE-SLE-Module-Containers-15-SP7-2025-4081,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-4081,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-4081,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-4081,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-4081,openSUSE-SLE-15.6-2025-4081",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_4081-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:4081-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20254081-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:4081-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023271.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252376",
"url": "https://bugzilla.suse.com/1252376"
},
{
"category": "self",
"summary": "SUSE Bug 1252543",
"url": "https://bugzilla.suse.com/1252543"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2025-11-12T12:49:35Z",
"generator": {
"date": "2025-11-12T12:49:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:4081-1",
"initial_release_date": "2025-11-12T12:49:35Z",
"revision_history": [
{
"date": "2025-11-12T12:49:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150500.3.56.2.aarch64",
"product": {
"name": "podman-4.9.5-150500.3.56.2.aarch64",
"product_id": "podman-4.9.5-150500.3.56.2.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150500.3.56.2.aarch64",
"product": {
"name": "podman-remote-4.9.5-150500.3.56.2.aarch64",
"product_id": "podman-remote-4.9.5-150500.3.56.2.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150500.3.56.2.aarch64",
"product": {
"name": "podmansh-4.9.5-150500.3.56.2.aarch64",
"product_id": "podmansh-4.9.5-150500.3.56.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150500.3.56.2.i586",
"product": {
"name": "podman-4.9.5-150500.3.56.2.i586",
"product_id": "podman-4.9.5-150500.3.56.2.i586"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150500.3.56.2.i586",
"product": {
"name": "podman-remote-4.9.5-150500.3.56.2.i586",
"product_id": "podman-remote-4.9.5-150500.3.56.2.i586"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150500.3.56.2.i586",
"product": {
"name": "podmansh-4.9.5-150500.3.56.2.i586",
"product_id": "podmansh-4.9.5-150500.3.56.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-4.9.5-150500.3.56.2.noarch",
"product": {
"name": "podman-docker-4.9.5-150500.3.56.2.noarch",
"product_id": "podman-docker-4.9.5-150500.3.56.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150500.3.56.2.ppc64le",
"product": {
"name": "podman-4.9.5-150500.3.56.2.ppc64le",
"product_id": "podman-4.9.5-150500.3.56.2.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150500.3.56.2.ppc64le",
"product": {
"name": "podman-remote-4.9.5-150500.3.56.2.ppc64le",
"product_id": "podman-remote-4.9.5-150500.3.56.2.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150500.3.56.2.ppc64le",
"product": {
"name": "podmansh-4.9.5-150500.3.56.2.ppc64le",
"product_id": "podmansh-4.9.5-150500.3.56.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150500.3.56.2.s390x",
"product": {
"name": "podman-4.9.5-150500.3.56.2.s390x",
"product_id": "podman-4.9.5-150500.3.56.2.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150500.3.56.2.s390x",
"product": {
"name": "podman-remote-4.9.5-150500.3.56.2.s390x",
"product_id": "podman-remote-4.9.5-150500.3.56.2.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150500.3.56.2.s390x",
"product": {
"name": "podmansh-4.9.5-150500.3.56.2.s390x",
"product_id": "podmansh-4.9.5-150500.3.56.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150500.3.56.2.x86_64",
"product": {
"name": "podman-4.9.5-150500.3.56.2.x86_64",
"product_id": "podman-4.9.5-150500.3.56.2.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150500.3.56.2.x86_64",
"product": {
"name": "podman-remote-4.9.5-150500.3.56.2.x86_64",
"product_id": "podman-remote-4.9.5-150500.3.56.2.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150500.3.56.2.x86_64",
"product": {
"name": "podmansh-4.9.5-150500.3.56.2.x86_64",
"product_id": "podmansh-4.9.5-150500.3.56.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podman-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podman-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.56.2.noarch as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.56.2.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.56.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podman-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podman-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.56.2.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.56.2.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.56.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podman-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podman-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.56.2.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podman-docker-4.9.5-150500.3.56.2.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.56.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.56.2.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-docker-4.9.5-150500.3.56.2.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.56.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.56.2.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.56.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podman-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podman-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.56.2.noarch as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.56.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podman-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.56.2.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-docker-4.9.5-150500.3.56.2.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.56.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podman-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podman-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.56.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.56.2.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.56.2.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.56.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.56.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.aarch64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.ppc64le"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.s390x"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.56.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.56.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.56.2.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.56.2.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.56.2.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T12:49:35Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.56.2.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.56.2.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.56.2.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T12:49:35Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.56.2.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.56.2.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP7:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:podmansh-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-docker-4.9.5-150500.3.56.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podman-remote-4.9.5-150500.3.56.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:podmansh-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.56.2.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.56.2.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.56.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T12:49:35Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2025:4077-1
Vulnerability from csaf_suse - Published: 2025-11-12 10:36 - Updated: 2025-11-12 10:36Summary
Security update for runc
Severity
Important
Notes
Title of the patch: Security update for runc
Description of the patch: This update for runc fixes the following issues:
Update to runc v1.3.3. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.3>. bsc#1252232
* CVE-2025-31133
* CVE-2025-52565
* CVE-2025-52881
Update to runc v1.3.2. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.2> bsc#1252110
- Includes an important fix for the CPUSet translation for cgroupv2.
Update to runc v1.3.1. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.1>
Update to runc v1.3.0. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.0>
Patchnames: SUSE-2025-4077,SUSE-SLE-SERVER-12-SP5-LTSS-2025-4077,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-4077
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for runc fixes the following issues:\n\nUpdate to runc v1.3.3. Upstream changelog is available from\n\n \u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.3\u003e. bsc#1252232\n\n * CVE-2025-31133\n * CVE-2025-52565\n * CVE-2025-52881\n\nUpdate to runc v1.3.2. Upstream changelog is available from\n\n\u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.2\u003e bsc#1252110\n\n - Includes an important fix for the CPUSet translation for cgroupv2.\n\nUpdate to runc v1.3.1. Upstream changelog is available from\n\n\u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.1\u003e\n\nUpdate to runc v1.3.0. Upstream changelog is available from\n\n\u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.0\u003e",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-4077,SUSE-SLE-SERVER-12-SP5-LTSS-2025-4077,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-4077",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_4077-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:4077-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20254077-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:4077-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023261.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252110",
"url": "https://bugzilla.suse.com/1252110"
},
{
"category": "self",
"summary": "SUSE Bug 1252232",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for runc",
"tracking": {
"current_release_date": "2025-11-12T10:36:08Z",
"generator": {
"date": "2025-11-12T10:36:08Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:4077-1",
"initial_release_date": "2025-11-12T10:36:08Z",
"revision_history": [
{
"date": "2025-11-12T10:36:08Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-16.70.1.aarch64",
"product": {
"name": "runc-1.3.3-16.70.1.aarch64",
"product_id": "runc-1.3.3-16.70.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-16.70.1.i586",
"product": {
"name": "runc-1.3.3-16.70.1.i586",
"product_id": "runc-1.3.3-16.70.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-16.70.1.ppc64le",
"product": {
"name": "runc-1.3.3-16.70.1.ppc64le",
"product_id": "runc-1.3.3-16.70.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-16.70.1.s390x",
"product": {
"name": "runc-1.3.3-16.70.1.s390x",
"product_id": "runc-1.3.3-16.70.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-16.70.1.x86_64",
"product": {
"name": "runc-1.3.3-16.70.1.x86_64",
"product_id": "runc-1.3.3-16.70.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss-extended-security:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-16.70.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.aarch64"
},
"product_reference": "runc-1.3.3-16.70.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-16.70.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.ppc64le"
},
"product_reference": "runc-1.3.3-16.70.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-16.70.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.s390x"
},
"product_reference": "runc-1.3.3-16.70.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-16.70.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.x86_64"
},
"product_reference": "runc-1.3.3-16.70.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-16.70.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.3.3-16.70.1.x86_64"
},
"product_reference": "runc-1.3.3-16.70.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.3.3-16.70.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.3.3-16.70.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.3.3-16.70.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T10:36:08Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.3.3-16.70.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.3.3-16.70.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.3.3-16.70.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T10:36:08Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.3.3-16.70.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.3.3-16.70.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:runc-1.3.3-16.70.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:runc-1.3.3-16.70.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-12T10:36:08Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
SUSE-SU-2025:21036-1
Vulnerability from csaf_suse - Published: 2025-11-10 14:45 - Updated: 2025-11-10 14:45Summary
Security update for runc
Severity
Important
Notes
Title of the patch: Security update for runc
Description of the patch: This update for runc fixes the following issues:
Update to runc v1.3.3. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.3>. bsc#1252232
* CVE-2025-31133
* CVE-2025-52565
* CVE-2025-52881
Update to runc v1.3.2. Upstream changelog is available from
<https://github.com/opencontainers/runc/releases/tag/v1.3.2> bsc#1252110
- Includes an important fix for the CPUSet translation for cgroupv2.
Patchnames: SUSE-SLE-Micro-6.0-512
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for runc fixes the following issues:\n\nUpdate to runc v1.3.3. Upstream changelog is available from\n\u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.3\u003e. bsc#1252232\n * CVE-2025-31133\n * CVE-2025-52565\n * CVE-2025-52881\n\nUpdate to runc v1.3.2. Upstream changelog is available from\n\u003chttps://github.com/opencontainers/runc/releases/tag/v1.3.2\u003e bsc#1252110\n\n- Includes an important fix for the CPUSet translation for cgroupv2.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-512",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_21036-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:21036-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202521036-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:21036-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023397.html"
},
{
"category": "self",
"summary": "SUSE Bug 1252110",
"url": "https://bugzilla.suse.com/1252110"
},
{
"category": "self",
"summary": "SUSE Bug 1252232",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52565 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-52881 page",
"url": "https://www.suse.com/security/cve/CVE-2025-52881/"
}
],
"title": "Security update for runc",
"tracking": {
"current_release_date": "2025-11-10T14:45:27Z",
"generator": {
"date": "2025-11-10T14:45:27Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:21036-1",
"initial_release_date": "2025-11-10T14:45:27Z",
"revision_history": [
{
"date": "2025-11-10T14:45:27Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-1.1.aarch64",
"product": {
"name": "runc-1.3.3-1.1.aarch64",
"product_id": "runc-1.3.3-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-1.1.s390x",
"product": {
"name": "runc-1.3.3-1.1.s390x",
"product_id": "runc-1.3.3-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.3.3-1.1.x86_64",
"product": {
"name": "runc-1.3.3-1.1.x86_64",
"product_id": "runc-1.3.3-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-1.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:runc-1.3.3-1.1.aarch64"
},
"product_reference": "runc-1.3.3-1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-1.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:runc-1.3.3-1.1.s390x"
},
"product_reference": "runc-1.3.3-1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.3.3-1.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:runc-1.3.3-1.1.x86_64"
},
"product_reference": "runc-1.3.3-1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31133"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.aarch64",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.s390x",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31133",
"url": "https://www.suse.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-31133",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.aarch64",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.s390x",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.aarch64",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.s390x",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-10T14:45:27Z",
"details": "important"
}
],
"title": "CVE-2025-31133"
},
{
"cve": "CVE-2025-52565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52565"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.aarch64",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.s390x",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52565",
"url": "https://www.suse.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52565",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.aarch64",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.s390x",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.aarch64",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.s390x",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-10T14:45:27Z",
"details": "important"
}
],
"title": "CVE-2025-52565"
},
{
"cve": "CVE-2025-52881",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-52881"
}
],
"notes": [
{
"category": "general",
"text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.aarch64",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.s390x",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-52881",
"url": "https://www.suse.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "SUSE Bug 1252232 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1252232"
},
{
"category": "external",
"summary": "SUSE Bug 1255063 for CVE-2025-52881",
"url": "https://bugzilla.suse.com/1255063"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.aarch64",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.s390x",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.aarch64",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.s390x",
"SUSE Linux Micro 6.0:runc-1.3.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-11-10T14:45:27Z",
"details": "important"
}
],
"title": "CVE-2025-52881"
}
]
}
RHSA-2026:0316
Vulnerability from csaf_redhat - Published: 2026-01-15 05:12 - Updated: 2026-05-07 07:29Summary
Red Hat Security Advisory: OpenShift Container Platform 4.12.84 bug fix and security update
Severity
Important
Notes
Topic: Red Hat OpenShift Container Platform release 4.12.84 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.12.
Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container Platform 4.12.84. See the following advisory for the RPM packages for this release:
https://access.redhat.com/errata/157795
Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes
Security Fix(es):
None
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files accessible.
7.4 (High)
Vendor Fix
For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes
You may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.
The sha value for the release is as follows:
(For x86_64 architecture)
The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b
All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.
https://access.redhat.com/errata/RHSA-2026:0316
Workaround
Avoid long-running build steps and overly permissive file permissions. Use RUN --mount=type=secret for sensitive data instead of bind mounts.
A vulnerability was found in BIND 9 resolvers, where processing malformed DNSKEY records from a specially crafted zone can lead to resource exhaustion, primarily causing excessive CPU utilization. This issue enables a remote, unauthenticated attacker to degrade resolver performance and potentially cause a denial of service (DoS) for legitimate DNS clients.
7.5 (High)
Vendor Fix
For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes
You may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.
The sha value for the release is as follows:
(For x86_64 architecture)
The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b
All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.
https://access.redhat.com/errata/RHSA-2026:0316
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
To reduce risk, restrict recursive queries to trusted or internal networks only, and apply rate limiting or firewall rules to prevent excessive or repetitive requests. Enabling DNSSEC validation helps reject forged records, while isolating recursive resolvers from authoritative servers limits the impact of potential cache poisoning. Active monitoring of CPU usage, query volume, and cache anomalies can provide early warning of abuse or attacks.
A flaw was found in the integration of Active Directory and the System Security Services Daemon (SSSD) on Linux systems. In default configurations, the Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is enabled, but a fallback to the an2ln plugin is possible. This fallback allows an attacker with permission to modify certain AD attributes (such as userPrincipalName or samAccountName) to impersonate privileged users, potentially resulting in unauthorized access or privilege escalation on domain-joined Linux hosts.
8.8 (High)
Vendor Fix
For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes
You may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.
The sha value for the release is as follows:
(For x86_64 architecture)
The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b
All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.
https://access.redhat.com/errata/RHSA-2026:0316
Workaround
To mitigate this issue, ensure the SSSD Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is configured and the an2ln plugin is disabled by adding "disable = an2ln" in a krb5 include file, for example /var/lib/sss/pubconf/krb5.include.d/localauth_plugin and make sure it is included in the Kerberos configuration. Apply vendor updates and follow Red Hat guidance for SSSD hardening.
A vulnerability exists in BIND’s DNS resolver logic that makes it overly permissive when accepting resource records (RRs) in responses. Under certain conditions, this flaw allows attackers to inject unsolicited or forged DNS records into the cache. This can be exploited to poison the resolver cache, redirecting clients to malicious domains or unauthorized servers.
8.6 (High)
Vendor Fix
For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes
You may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.
The sha value for the release is as follows:
(For x86_64 architecture)
The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b
All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.
https://access.redhat.com/errata/RHSA-2026:0316
Workaround
While it is not possible to eliminate risk from this vulnerability, there are several options for reducing the risk. These include restricting recursive queries to trusted or internal networks only, and apply rate limiting or firewall rules to prevent excessive or repetitive requests. Enabling DNSSEC validation helps reject forged records, while isolating recursive resolvers from authoritative servers limits the impact of potential cache poisoning. Active monitoring of CPU usage, query volume, and cache anomalies can provide early warning of abuse or attacks.
A vulnerability was found in BIND resolvers caused by a weakness in the Pseudo Random Number Generator (PRNG). This weakness allows an attacker to potentially predict the source port and query ID used by BIND, enabling cache poisoning attacks. If successful, the attacker can inject malicious DNS responses into the resolver’s cache, causing clients to receive spoofed DNS data. Authoritative servers are generally unaffected, but recursive resolvers are exposed to this risk. Exploitation is remote and does not require user interaction.
8.6 (High)
Vendor Fix
For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes
You may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.
The sha value for the release is as follows:
(For x86_64 architecture)
The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b
All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.
https://access.redhat.com/errata/RHSA-2026:0316
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
To reduce risk, restrict recursive queries to trusted or internal networks only, and apply rate limiting or firewall rules to prevent excessive or repetitive requests. Enabling DNSSEC validation helps reject forged records, while isolating recursive resolvers from authoritative servers limits the impact of potential cache poisoning. Active monitoring of CPU usage, query volume, and cache anomalies can provide early warning of abuse or attacks.
A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.
8.2 (High)
Vendor Fix
For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes
You may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.
The sha value for the release is as follows:
(For x86_64 architecture)
The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b
All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.
https://access.redhat.com/errata/RHSA-2026:0316
Workaround
Potential mitigations for this issue include:
* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).
* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.
A memory amplification vulnerability in libexpat allows attackers to trigger excessive dynamic memory allocations by submitting specially crafted XML input. A small input (~250 KiB) can cause the parser to allocate hundreds of megabytes, leading to denial-of-service (DoS) through memory exhaustion.
5.3 (Medium)
Vendor Fix
For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes
You may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.
The sha value for the release is as follows:
(For x86_64 architecture)
The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b
All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.
https://access.redhat.com/errata/RHSA-2026:0316
Workaround
To mitigate the issue, limit XML input size and complexity before parsing, and avoid accepting compressed or deeply nested XML. Use OS-level resource controls (like ulimit or setrlimit()) to cap memory usage, or run the parser in a sandboxed or isolated process with strict memory and CPU limits. This helps prevent denial-of-service by containing excessive resource consumption.
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Acknowledgments
Zavier Lee
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.12.84 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.12.\n\nRed Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container Platform 4.12.84. See the following advisory for the RPM packages for this release:\n\nhttps://access.redhat.com/errata/157795\n\nSpace precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nSecurity Fix(es):\n\nNone\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:0316",
"url": "https://access.redhat.com/errata/RHSA-2026:0316"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2367235",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367235"
},
{
"category": "external",
"summary": "2395108",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2395108"
},
{
"category": "external",
"summary": "2402727",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402727"
},
{
"category": "external",
"summary": "2404715",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404715"
},
{
"category": "external",
"summary": "2405827",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2405827"
},
{
"category": "external",
"summary": "2405829",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2405829"
},
{
"category": "external",
"summary": "2405830",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2405830"
},
{
"category": "external",
"summary": "OCPBUGS-65982",
"url": "https://issues.redhat.com/browse/OCPBUGS-65982"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_0316.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.12.84 bug fix and security update",
"tracking": {
"current_release_date": "2026-05-07T07:29:06+00:00",
"generator": {
"date": "2026-05-07T07:29:06+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2026:0316",
"initial_release_date": "2026-01-15T05:12:28+00:00",
"revision_history": [
{
"date": "2026-01-15T05:12:28+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-01-15T05:12:28+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-07T07:29:06+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.12",
"product": {
"name": "Red Hat OpenShift Container Platform 4.12",
"product_id": "8Base-RHOSE-4.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.12::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-x86_64-412.86.202601061735-0",
"product": {
"name": "rhcos-x86_64-412.86.202601061735-0",
"product_id": "rhcos-x86_64-412.86.202601061735-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@412.86.202601061735?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-x86_64-412.86.202601061735-0 as a component of Red Hat OpenShift Container Platform 4.12",
"product_id": "8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
},
"product_reference": "rhcos-x86_64-412.86.202601061735-0",
"relates_to_product_reference": "8Base-RHOSE-4.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-4953",
"cwe": {
"id": "CWE-378",
"name": "Creation of Temporary File With Insecure Permissions"
},
"discovery_date": "2025-05-19T11:46:53.335000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2367235"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files accessible.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "podman: Build Context Bind Mount",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as Moderate rather than Important because exploitation requires several preconditions: an attacker must have unprivileged access to the host during the build process, the container build must include long-running steps (e.g., RUN sleep) that prolong the existence of the temporary build context, and files must be created with overly permissive permissions (e.g., 4777). The vulnerability does not allow remote code execution or compromise of running containers, and it only exposes files temporarily present in the build context. Therefore, while it can lead to information disclosure, the scope and impact are limited to local users with concurrent access, making the overall risk moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4953"
},
{
"category": "external",
"summary": "RHBZ#2367235",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367235"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4953",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4953"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4953",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4953"
},
{
"category": "external",
"summary": "https://github.com/containers/podman/pull/25173",
"url": "https://github.com/containers/podman/pull/25173"
}
],
"release_date": "2025-09-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-15T05:12:28+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:0316"
},
{
"category": "workaround",
"details": "Avoid long-running build steps and overly permissive file permissions. Use RUN --mount=type=secret for sensitive data instead of bind mounts.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "podman: Build Context Bind Mount"
},
{
"cve": "CVE-2025-8677",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2025-10-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2405830"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in BIND 9 resolvers, where processing malformed DNSKEY records from a specially crafted zone can lead to resource exhaustion, primarily causing excessive CPU utilization. This issue enables a remote, unauthenticated attacker to degrade resolver performance and potentially cause a denial of service (DoS) for legitimate DNS clients.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "bind: Resource exhaustion via malformed DNSKEY handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is considered Important because it allows a remote, unauthenticated attacker to cause significant CPU exhaustion on vulnerable BIND resolvers by serving zones containing malformed DNSKEY records. The flaw triggers excessive computational effort during DNSKEY validation, leading to degraded performance and potential denial of service for legitimate clients. However, the issue affects availability only\u2014it does not enable code execution, data exposure, or privilege escalation\u2014so it is not classified as critical. Furthermore, authoritative servers are not impacted, limiting the scope of exposure to recursive resolvers. While the attack is easy to launch and can disrupt DNS operations, its effect ceases once the malicious traffic stops, making prompt patching and recursive access control effective mitigations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-8677"
},
{
"category": "external",
"summary": "RHBZ#2405830",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2405830"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-8677",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8677"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-8677",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-8677"
}
],
"release_date": "2025-10-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-15T05:12:28+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:0316"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\n\nTo reduce risk, restrict recursive queries to trusted or internal networks only, and apply rate limiting or firewall rules to prevent excessive or repetitive requests. Enabling DNSSEC validation helps reject forged records, while isolating recursive resolvers from authoritative servers limits the impact of potential cache poisoning. Active monitoring of CPU usage, query volume, and cache anomalies can provide early warning of abuse or attacks.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "bind: Resource exhaustion via malformed DNSKEY handling"
},
{
"acknowledgments": [
{
"names": [
"Zavier Lee"
]
}
],
"cve": "CVE-2025-11561",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"discovery_date": "2025-10-09T12:57:29.851000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2402727"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the integration of Active Directory and the System Security Services Daemon (SSSD) on Linux systems. In default configurations, the Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is enabled, but a fallback to the an2ln plugin is possible. This fallback allows an attacker with permission to modify certain AD attributes (such as userPrincipalName or samAccountName) to impersonate privileged users, potentially resulting in unauthorized access or privilege escalation on domain-joined Linux hosts.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sssd: SSSD default Kerberos configuration allows privilege escalation on AD-joined Linux systems",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has assessed this issue as High severity for domain-joined Linux systems using default SSSD configurations. While the Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is enabled by default, fallback to the an2ln plugin can occur, allowing a domain user who can modify certain Active Directory attributes (such as userPrincipalName or samAccountName) to map to privileged local accounts. This could lead to unauthorized access or elevated privileges on affected Linux hosts. Administrators are advised to review and apply recommended hardening configurations to mitigate this behavior.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-11561"
},
{
"category": "external",
"summary": "RHBZ#2402727",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402727"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-11561",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-11561"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-11561",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-11561"
},
{
"category": "external",
"summary": "https://blog.async.sg/kerberos-ldr",
"url": "https://blog.async.sg/kerberos-ldr"
},
{
"category": "external",
"summary": "https://github.com/SSSD/sssd/issues/8021",
"url": "https://github.com/SSSD/sssd/issues/8021"
}
],
"release_date": "2025-10-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-15T05:12:28+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:0316"
},
{
"category": "workaround",
"details": "To mitigate this issue, ensure the SSSD Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is configured and the an2ln plugin is disabled by adding \"disable = an2ln\" in a krb5 include file, for example /var/lib/sss/pubconf/krb5.include.d/localauth_plugin and make sure it is included in the Kerberos configuration. Apply vendor updates and follow Red Hat guidance for SSSD hardening.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sssd: SSSD default Kerberos configuration allows privilege escalation on AD-joined Linux systems"
},
{
"cve": "CVE-2025-40778",
"cwe": {
"id": "CWE-347",
"name": "Improper Verification of Cryptographic Signature"
},
"discovery_date": "2025-10-22T15:07:23.729000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2405827"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability exists in BIND\u2019s DNS resolver logic that makes it overly permissive when accepting resource records (RRs) in responses. Under certain conditions, this flaw allows attackers to inject unsolicited or forged DNS records into the cache. This can be exploited to poison the resolver cache, redirecting clients to malicious domains or unauthorized servers.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "bind: Cache poisoning attacks with unsolicited RRs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "It is classified as Important rather than Critical because its impact is limited to cache poisoning within recursive resolvers and does not allow direct code execution, privilege escalation, or service disruption. The vulnerability affects the accuracy of DNS responses, but not the availability or confidentiality of systems. Additionally, DNSSEC-enabled deployments and restricted recursive access can significantly mitigate exploitation risks. Therefore, while the flaw can misdirect network traffic and compromise trust in name resolution, it does not directly compromise the underlying server or client systems, justifying an Important \u2014 but not Critical \u2014 severity rating.\n\nTechnical Analysis:\nThe issue arises because BIND fails to strictly validate unsolicited resource records accompanying legitimate DNS responses. This gap allows forged recursive resolvers to be cached as valid entries. Since the attack is remote, requires no authentication, and exploits a low-complexity vector, it is highly impactful in recursive resolver environments\u2014especially those exposed to untrusted clients or open resolvers.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-40778"
},
{
"category": "external",
"summary": "RHBZ#2405827",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2405827"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-40778",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40778"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-40778",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-40778"
}
],
"release_date": "2025-10-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-15T05:12:28+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:0316"
},
{
"category": "workaround",
"details": "While it is not possible to eliminate risk from this vulnerability, there are several options for reducing the risk. These include restricting recursive queries to trusted or internal networks only, and apply rate limiting or firewall rules to prevent excessive or repetitive requests. Enabling DNSSEC validation helps reject forged records, while isolating recursive resolvers from authoritative servers limits the impact of potential cache poisoning. Active monitoring of CPU usage, query volume, and cache anomalies can provide early warning of abuse or attacks.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "bind: Cache poisoning attacks with unsolicited RRs"
},
{
"cve": "CVE-2025-40780",
"cwe": {
"id": "CWE-338",
"name": "Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)"
},
"discovery_date": "2025-10-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2405829"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in BIND resolvers caused by a weakness in the Pseudo Random Number Generator (PRNG). This weakness allows an attacker to potentially predict the source port and query ID used by BIND, enabling cache poisoning attacks. If successful, the attacker can inject malicious DNS responses into the resolver\u2019s cache, causing clients to receive spoofed DNS data. Authoritative servers are generally unaffected, but recursive resolvers are exposed to this risk. Exploitation is remote and does not require user interaction.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "bind: Cache poisoning due to weak PRNG",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in BIND 9 resolvers caused by a weakness in the Pseudo Random Number Generator (PRNG) used to select the UDP source port and DNS query (transaction) ID. Exploitation requires an attacker to correctly predict both values and race the legitimate authoritative response with a spoofed packet to perform cache poisoning. While the PRNG weakness reduces entropy and makes prediction feasible under certain conditions, this still requires precise timing, on-path or spoofing capabilities, and targeting of recursive resolvers.\n\nThe impact is limited to resolver cache integrity; it does not allow remote code execution, privilege escalation, or direct compromise of the BIND server itself. Authoritative servers are not affected. Additionally, operational mitigations such as DNSSEC validation, access control restricting recursion, and network-level packet filtering reduce real-world exploitability. No active exploits have been observed in the wild.\n\nBecause exploitation is non-trivial, requires network-level spoofing and precise timing, and only affects cache integrity without server compromise, the vulnerability is considered Important rather than Critical.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-40780"
},
{
"category": "external",
"summary": "RHBZ#2405829",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2405829"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-40780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40780"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-40780",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-40780"
}
],
"release_date": "2025-10-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-15T05:12:28+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:0316"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\n\nTo reduce risk, restrict recursive queries to trusted or internal networks only, and apply rate limiting or firewall rules to prevent excessive or repetitive requests. Enabling DNSSEC validation helps reject forged records, while isolating recursive resolvers from authoritative servers limits the impact of potential cache poisoning. Active monitoring of CPU usage, query volume, and cache anomalies can provide early warning of abuse or attacks.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "bind: Cache poisoning due to weak PRNG"
},
{
"cve": "CVE-2025-52881",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-10-17T14:19:18.652000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2404715"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat considers this as an Important flaw since the impact is limited to local attack with minimal privileges in order to jeopardize the environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "RHBZ#2404715",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404715"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-52881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52881"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm",
"url": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/selinux/pull/237",
"url": "https://github.com/opencontainers/selinux/pull/237"
}
],
"release_date": "2025-11-05T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-15T05:12:28+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:0316"
},
{
"category": "workaround",
"details": "Potential mitigations for this issue include:\n\n* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).\n* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects"
},
{
"cve": "CVE-2025-59375",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-09-15T03:00:59.775098+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2395108"
}
],
"notes": [
{
"category": "description",
"text": "A memory amplification vulnerability in libexpat allows attackers to trigger excessive dynamic memory allocations by submitting specially crafted XML input. A small input (~250 KiB) can cause the parser to allocate hundreds of megabytes, leading to denial-of-service (DoS) through memory exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is Important rather than Critical because, while it allows for significant resource exhaustion leading to denial-of-service (DoS), it does not enable arbitrary code execution, data leakage, or privilege escalation. The vulnerability stems from an uncontrolled memory amplification behavior in libexpat\u2019s parser, where a relatively small XML payload can cause disproportionately large heap allocations. However, the flaw is limited in scope to service disruption and requires the attacker to submit a crafted XML document\u2014something that can be mitigated with proper input validation and memory usage limits. Therefore, while the exploitability is high, the impact is confined to availability, not confidentiality or integrity, making it a high-severity but not critical flaw.\n\nIn Firefox and Thunderbird, where libexpat is a transitive userspace dependency, exploitation usually just crashes the application (app-level DoS), so it is classified as Moderate instead of Important.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-59375"
},
{
"category": "external",
"summary": "RHBZ#2395108",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2395108"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-59375",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59375"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59375",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59375"
},
{
"category": "external",
"summary": "https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2025-59375",
"url": "https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2025-59375"
},
{
"category": "external",
"summary": "https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2025-59375",
"url": "https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2025-59375"
}
],
"release_date": "2025-09-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-15T05:12:28+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digest may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:9ea794d2dd24ff7377534edfb0447e5398a28919a84300cc79fe7bb8ae550d1b\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:0316"
},
{
"category": "workaround",
"details": "To mitigate the issue, limit XML input size and complexity before parsing, and avoid accepting compressed or deeply nested XML. Use OS-level resource controls (like ulimit or setrlimit()) to cap memory usage, or run the parser in a sandboxed or isolated process with strict memory and CPU limits. This helps prevent denial-of-service by containing excessive resource consumption.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202601061735-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing"
}
]
}
RHSA-2026:0676
Vulnerability from csaf_redhat - Published: 2026-01-22 19:53 - Updated: 2026-05-07 07:29Summary
Red Hat Security Advisory: OpenShift Container Platform 4.13.63 packages and security update
Severity
Important
Notes
Topic: Red Hat OpenShift Container Platform release 4.13.63 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.13.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.13.63. See the following advisory for the container images for this release:
https://access.redhat.com/errata/RHBA-2026:0678
Security Fix(es):
* runc: container escape via 'masked path' abuse due to mount race conditions (CVE-2025-31133)
* runc: container escape with malicious config due to /dev/console mount and related races (CVE-2025-52565)
* runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects (CVE-2025-52881)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instead bind-mount the symlink target read-write.
8.2 (High)
Vendor Fix
For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes
https://access.redhat.com/errata/RHSA-2026:0676
Workaround
Potential mitigations for this issue include:
* Using user namespaces, with the host root user not mapped into the container's namespace. procfs file permissions are managed using Unix
DAC and thus user namespaces stop a container process from being able to write to them.
* Not running as a root user in the container (this includes disabling setuid binaries with noNewPrivileges). As above, procfs file permissions are managed using Unix DAC and thus non-root users cannot write to them.
* Depending on the maskedPath configuration (the default configuratio nonly masks paths in /proc and /sys), using an AppArmor that blocks unexpectedwrites to any maskedPaths (as is the case with the defaultprofile used by Docker and Podman) will block attempts to exploit this issue. However, CVE-2025-52881 allows an attacker to bypass LSMlabels, and so this mitigation is not helpful when considered incombination with CVE-2025-52881.
A flaw was found in runc. CVE-2025-52565 is very similar in concept and application toCVE-2025-31133, except that it exploits a flaw in /dev/console bind-mounts. When creating the /dev/console bind-mount (to /dev/pts/$n), if an attacker replaces /dev/pts/$n with a symlink then runc will bind-mount the symlink target over /dev/console.
8.2 (High)
Vendor Fix
For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes
https://access.redhat.com/errata/RHSA-2026:0676
Workaround
Potential mitigations for this issue include:
* Using user namespaces, with the host root user not mapped into the container's namespace. procfs file permissions are managed using Unix DAC and thus user namespaces stop a container process from being able to write to them.
* Not running as a root user in the container (this includes disabling setuid binaries with noNewPrivileges). As above, procfs file permissions are managed using Unix DAC and thus non-root users cannot write to them.
* The default SELinux policy should mitigate this issue, as the /dev/console bind-mount does not re-label the mount and so the container process should not be able to write to unsafe procfs files. However, CVE-2025-52881 allows an attacker to bypass LSM labels, and so this mitigation is not helpful when considered in combination with CVE-2025-52881.
* The default AppArmor profile used by most runtimes will NOT help mitigate this issue, as /dev/console access is permitted. You could create a custom profile that blocks access to /dev/console, but such a profile might break regular containers. In addition, CVE-2025-52881 allows an attacker to bypass LSM labels, and so that mitigation is not helpful when considered in combination with CVE-2025-52881.
A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.
8.2 (High)
Vendor Fix
For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes
https://access.redhat.com/errata/RHSA-2026:0676
Workaround
Potential mitigations for this issue include:
* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).
* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.13.63 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.13.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.13.63. See the following advisory for the container images for this release:\n\nhttps://access.redhat.com/errata/RHBA-2026:0678\n\nSecurity Fix(es):\n\n* runc: container escape via \u0027masked path\u0027 abuse due to mount race conditions (CVE-2025-31133)\n* runc: container escape with malicious config due to /dev/console mount and related races (CVE-2025-52565)\n* runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects (CVE-2025-52881)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:0676",
"url": "https://access.redhat.com/errata/RHSA-2026:0676"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2404705",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404705"
},
{
"category": "external",
"summary": "2404708",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404708"
},
{
"category": "external",
"summary": "2404715",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404715"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_0676.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.13.63 packages and security update",
"tracking": {
"current_release_date": "2026-05-07T07:29:10+00:00",
"generator": {
"date": "2026-05-07T07:29:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2026:0676",
"initial_release_date": "2026-01-22T19:53:23+00:00",
"revision_history": [
{
"date": "2026-01-22T19:53:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-01-22T19:53:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-07T07:29:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.13",
"product": {
"name": "Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.13::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.13",
"product": {
"name": "Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.13::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-4:1.2.9-1.rhaos4.16.el8.src",
"product": {
"name": "runc-4:1.2.9-1.rhaos4.16.el8.src",
"product_id": "runc-4:1.2.9-1.rhaos4.16.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.rhaos4.16.el8?arch=src\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "kernel-0:5.14.0-284.153.1.el9_2.src",
"product": {
"name": "kernel-0:5.14.0-284.153.1.el9_2.src",
"product_id": "kernel-0:5.14.0-284.153.1.el9_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@5.14.0-284.153.1.el9_2?arch=src"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"product": {
"name": "kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"product_id": "kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@5.14.0-284.153.1.rt14.438.el9_2?arch=src"
}
}
},
{
"category": "product_version",
"name": "runc-4:1.2.9-1.rhaos4.16.el9.src",
"product": {
"name": "runc-4:1.2.9-1.rhaos4.16.el9.src",
"product_id": "runc-4:1.2.9-1.rhaos4.16.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.rhaos4.16.el9?arch=src\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"product": {
"name": "runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"product_id": "runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.rhaos4.16.el8?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"product": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"product_id": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.9-1.rhaos4.16.el8?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"product": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"product_id": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.9-1.rhaos4.16.el8?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"product": {
"name": "bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"product_id": "bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool@7.0.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel-matched@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-core@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-internal@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-partner@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-uki-virt@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel-matched@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-ipaclones-internal@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-core@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-internal@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-partner@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-selftests-internal@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-uki-virt@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "perf-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "perf-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rtla-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "rtla-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "rtla-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rtla@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"product": {
"name": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"product_id": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool-debuginfo@7.0.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product": {
"name": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product_id": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@5.14.0-284.153.1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-core@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-core@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel-matched@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-kvm@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-core@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-extra@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-internal@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-partner@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel-matched@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-kvm@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-core@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-extra@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-internal@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-partner@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-selftests-internal@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product": {
"name": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_id": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@5.14.0-284.153.1.rt14.438.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"product": {
"name": "runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"product_id": "runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.rhaos4.16.el9?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64",
"product": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64",
"product_id": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.9-1.rhaos4.16.el9?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"product": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"product_id": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.9-1.rhaos4.16.el9?arch=x86_64\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"product": {
"name": "runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"product_id": "runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.rhaos4.16.el8?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"product": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"product_id": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.9-1.rhaos4.16.el8?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"product": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"product_id": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.9-1.rhaos4.16.el8?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"product": {
"name": "bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"product_id": "bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool@7.0.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-core@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-core@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-devel@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-devel-matched@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-modules@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-modules-core@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-modules-extra@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-modules-internal@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-modules-partner@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-devel@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-devel-matched@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-modules@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-modules-core@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-modules-extra@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-modules-internal@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-modules-partner@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel-matched@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-core@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-internal@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-partner@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel-matched@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-core@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-internal@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-partner@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-selftests-internal@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "perf-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "perf-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rtla@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"product": {
"name": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"product_id": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool-debuginfo@7.0.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-debuginfo@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debuginfo@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-aarch64@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product": {
"name": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_id": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@5.14.0-284.153.1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"product": {
"name": "runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"product_id": "runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.rhaos4.16.el9?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"product": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"product_id": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.9-1.rhaos4.16.el9?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"product": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"product_id": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.9-1.rhaos4.16.el9?arch=aarch64\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"product": {
"name": "runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"product_id": "runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.rhaos4.16.el8?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"product": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"product_id": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.9-1.rhaos4.16.el8?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"product": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"product_id": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.9-1.rhaos4.16.el8?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"product_id": "bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool@7.0.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel-matched@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-core@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-internal@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-partner@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel-matched@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-ipaclones-internal@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-core@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-internal@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-partner@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-selftests-internal@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rtla@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"product_id": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool-debuginfo@7.0.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64le@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product": {
"name": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_id": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@5.14.0-284.153.1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"product": {
"name": "runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"product_id": "runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.rhaos4.16.el9?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"product": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"product_id": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.9-1.rhaos4.16.el9?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"product": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"product_id": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.9-1.rhaos4.16.el9?arch=ppc64le\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"product": {
"name": "runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"product_id": "runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.rhaos4.16.el8?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"product": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"product_id": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.9-1.rhaos4.16.el8?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"product": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"product_id": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.9-1.rhaos4.16.el8?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"product": {
"name": "bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"product_id": "bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool@7.0.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel-matched@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-core@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-internal@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-partner@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel-matched@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-core@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-internal@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-partner@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-selftests-internal@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-core@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-devel@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-devel-matched@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules-core@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules-extra@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules-internal@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules-partner@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "perf-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "perf-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "perf-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "rtla-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "rtla-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "rtla-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rtla@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"product": {
"name": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"product_id": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool-debuginfo@7.0.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-debuginfo@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product": {
"name": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product_id": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@5.14.0-284.153.1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"product": {
"name": "runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"product_id": "runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.rhaos4.16.el9?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"product": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"product_id": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.9-1.rhaos4.16.el9?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"product": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"product_id": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.9-1.rhaos4.16.el9?arch=s390x\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"product": {
"name": "kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"product_id": "kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-abi-stablelists@5.14.0-284.153.1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"product": {
"name": "kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"product_id": "kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@5.14.0-284.153.1.el9_2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.rhaos4.16.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64"
},
"product_reference": "runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.rhaos4.16.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le"
},
"product_reference": "runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.rhaos4.16.el8.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x"
},
"product_reference": "runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.rhaos4.16.el8.src as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src"
},
"product_reference": "runc-4:1.2.9-1.rhaos4.16.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.rhaos4.16.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64"
},
"product_reference": "runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64"
},
"product_reference": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le"
},
"product_reference": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x"
},
"product_reference": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64"
},
"product_reference": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64"
},
"product_reference": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le"
},
"product_reference": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x"
},
"product_reference": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64"
},
"product_reference": "runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-0:7.0.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64"
},
"product_reference": "bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-0:7.0.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-0:7.0.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x"
},
"product_reference": "bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-0:7.0.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64"
},
"product_reference": "bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64"
},
"product_reference": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x"
},
"product_reference": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64"
},
"product_reference": "bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:5.14.0-284.153.1.el9_2.src as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src"
},
"product_reference": "kernel-0:5.14.0-284.153.1.el9_2.src",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch"
},
"product_reference": "kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:5.14.0-284.153.1.el9_2.noarch as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch"
},
"product_reference": "kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src"
},
"product_reference": "kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64"
},
"product_reference": "kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "perf-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "perf-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "perf-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rtla-0:5.14.0-284.153.1.el9_2.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64"
},
"product_reference": "rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rtla-0:5.14.0-284.153.1.el9_2.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le"
},
"product_reference": "rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rtla-0:5.14.0-284.153.1.el9_2.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x"
},
"product_reference": "rtla-0:5.14.0-284.153.1.el9_2.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rtla-0:5.14.0-284.153.1.el9_2.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64"
},
"product_reference": "rtla-0:5.14.0-284.153.1.el9_2.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.rhaos4.16.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64"
},
"product_reference": "runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.rhaos4.16.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le"
},
"product_reference": "runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.rhaos4.16.el9.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x"
},
"product_reference": "runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.rhaos4.16.el9.src as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src"
},
"product_reference": "runc-4:1.2.9-1.rhaos4.16.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.rhaos4.16.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64"
},
"product_reference": "runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64"
},
"product_reference": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le"
},
"product_reference": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x"
},
"product_reference": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64"
},
"product_reference": "runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64"
},
"product_reference": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le"
},
"product_reference": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x"
},
"product_reference": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.13"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
},
"product_reference": "runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.13"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31133",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-10-17T14:17:18.235000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2404705"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container\u0027s /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instead bind-mount the symlink target read-write.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: container escape via \u0027masked path\u0027 abuse due to mount race conditions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat considers this as an Important flaw since the impact is limited to local attack with minimal privileges in order to jeopardize the environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-31133"
},
{
"category": "external",
"summary": "RHBZ#2404705",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404705"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-31133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31133"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31133",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31133"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2",
"url": "https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2"
}
],
"release_date": "2025-11-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-22T19:53:23+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes",
"product_ids": [
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:0676"
},
{
"category": "workaround",
"details": "Potential mitigations for this issue include:\n\n* Using user namespaces, with the host root user not mapped into the container\u0027s namespace. procfs file permissions are managed using Unix\nDAC and thus user namespaces stop a container process from being able to write to them.\n\n* Not running as a root user in the container (this includes disabling setuid binaries with noNewPrivileges). As above, procfs file permissions are managed using Unix DAC and thus non-root users cannot write to them.\n\n* Depending on the maskedPath configuration (the default configuratio nonly masks paths in /proc and /sys), using an AppArmor that blocks unexpectedwrites to any maskedPaths (as is the case with the defaultprofile used by Docker and Podman) will block attempts to exploit this issue. However, CVE-2025-52881 allows an attacker to bypass LSMlabels, and so this mitigation is not helpful when considered incombination with CVE-2025-52881.",
"product_ids": [
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "runc: container escape via \u0027masked path\u0027 abuse due to mount race conditions"
},
{
"cve": "CVE-2025-52565",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-10-17T14:19:18.653000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2404708"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in runc. CVE-2025-52565 is very similar in concept and application toCVE-2025-31133, except that it exploits a flaw in /dev/console\nbind-mounts. When creating the /dev/console bind-mount (to /dev/pts/$n), if an attacker replaces /dev/pts/$n with a symlink then runc will bind-mount the symlink target over /dev/console.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: container escape with malicious config due to /dev/console mount and related races",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat considers this as an Important flaw since the impact is limited to local attack with minimal privileges in order to jeopardize the environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-52565"
},
{
"category": "external",
"summary": "RHBZ#2404708",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404708"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-52565",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52565"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52565",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52565"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r",
"url": "https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r"
}
],
"release_date": "2025-11-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-22T19:53:23+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes",
"product_ids": [
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:0676"
},
{
"category": "workaround",
"details": "Potential mitigations for this issue include:\n\n* Using user namespaces, with the host root user not mapped into the container\u0027s namespace. procfs file permissions are managed using Unix DAC and thus user namespaces stop a container process from being able to write to them.\n* Not running as a root user in the container (this includes disabling setuid binaries with noNewPrivileges). As above, procfs file permissions are managed using Unix DAC and thus non-root users cannot write to them.\n* The default SELinux policy should mitigate this issue, as the /dev/console bind-mount does not re-label the mount and so the container process should not be able to write to unsafe procfs files. However, CVE-2025-52881 allows an attacker to bypass LSM labels, and so this mitigation is not helpful when considered in combination with CVE-2025-52881.\n* The default AppArmor profile used by most runtimes will NOT help mitigate this issue, as /dev/console access is permitted. You could create a custom profile that blocks access to /dev/console, but such a profile might break regular containers. In addition, CVE-2025-52881 allows an attacker to bypass LSM labels, and so that mitigation is not helpful when considered in combination with CVE-2025-52881.",
"product_ids": [
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "runc: container escape with malicious config due to /dev/console mount and related races"
},
{
"cve": "CVE-2025-52881",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-10-17T14:19:18.652000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2404715"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat considers this as an Important flaw since the impact is limited to local attack with minimal privileges in order to jeopardize the environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "RHBZ#2404715",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404715"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-52881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52881"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm",
"url": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/selinux/pull/237",
"url": "https://github.com/opencontainers/selinux/pull/237"
}
],
"release_date": "2025-11-05T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-22T19:53:23+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes",
"product_ids": [
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:0676"
},
{
"category": "workaround",
"details": "Potential mitigations for this issue include:\n\n* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).\n* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.",
"product_ids": [
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.src",
"8Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el8.x86_64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.aarch64",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.ppc64le",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.s390x",
"8Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el8.x86_64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:bpftool-debuginfo-0:7.0.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.src",
"9Base-RHOSE-4.13:kernel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-64k-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-64k-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-abi-stablelists-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debug-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debug-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-aarch64-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-debuginfo-common-ppc64le-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-debuginfo-common-s390x-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-debuginfo-common-x86_64-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-devel-matched-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-doc-0:5.14.0-284.153.1.el9_2.noarch",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-ipaclones-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-core-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-extra-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-modules-partner-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.src",
"9Base-RHOSE-4.13:kernel-rt-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debug-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-debuginfo-common-x86_64-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-devel-matched-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-kvm-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-core-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-extra-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-modules-partner-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-rt-selftests-internal-0:5.14.0-284.153.1.rt14.438.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-selftests-internal-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-tools-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:kernel-tools-libs-devel-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-uki-virt-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:kernel-zfcpdump-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-devel-matched-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-core-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-extra-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-internal-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:kernel-zfcpdump-modules-partner-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:python3-perf-debuginfo-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.aarch64",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.ppc64le",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.s390x",
"9Base-RHOSE-4.13:rtla-0:5.14.0-284.153.1.el9_2.x86_64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.src",
"9Base-RHOSE-4.13:runc-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debuginfo-4:1.2.9-1.rhaos4.16.el9.x86_64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.aarch64",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.ppc64le",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.s390x",
"9Base-RHOSE-4.13:runc-debugsource-4:1.2.9-1.rhaos4.16.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects"
}
]
}
RHSA-2026:1730
Vulnerability from csaf_redhat - Published: 2026-02-02 15:52 - Updated: 2026-05-07 07:29Summary
Red Hat Security Advisory: Red Hat Quay 3.12.13
Severity
Important
Notes
Topic: Red Hat Quay 3.12.13 is now available with bug fixes.
Details: Quay 3.12.13
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2026:1730
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in the x/crypto/ssh go library. Applications and libraries that misuse the ServerConfig.PublicKeyCallback callback may be susceptible to an authorization bypass. For example, an attacker may send public keys A and B and authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B, for which the attacker does not control the private key. The misuse of ServerConfig.PublicKeyCallback may cause an authorization bypass.
8.2 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2026:1730
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2026:1730
A flaw was found in node-forge. This vulnerability allows unauthenticated attackers to bypass downstream cryptographic verifications and security decisions via crafting ASN.1 (Abstract Syntax Notation One) structures to desynchronize schema validations, yielding a semantic divergence.
8.7 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2026:1730
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
A flaw was found in qs, a module used for parsing query strings. A remote attacker can exploit an improper input validation vulnerability by sending specially crafted HTTP requests that use bracket notation (e.g., `a[]=value`). This bypasses the `arrayLimit` option, which is designed to limit the size of parsed arrays and prevent resource exhaustion. Successful exploitation can lead to memory exhaustion, causing a Denial of Service (DoS) where the application crashes or becomes unresponsive, making the service unavailable to users.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2026:1730
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.
8.2 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2026:1730
Workaround
Potential mitigations for this issue include:
* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).
* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.
A flaw was found in auth0/node-jws. This vulnerability allows improper signature verification via using the HS256 (Hash-based Message Authentication Code using SHA-256) algorithm under specific conditions, where applications use the jws.createVerify() function for HMAC (Keyed-Hash Message Authentication Code) algorithms and user-provided data from the JSON (JavaScript Object Notation) Web Signature protected header or payload in HMAC secret lookup routines.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2026:1730
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
An ASN.1 Denial of Service (Dos) vulnerability exists in the node-forge asn1.fromDer function within forge/lib/asn1.js. The ASN.1 DER parser implementation (_fromDer) recurses for every constructed ASN.1 value (SEQUENCE, SET, etc.) and lacks a guard limiting recursion depth. An attacker can craft a small DER blob containing a very large nesting depth of constructed TLVs which causes the Node.js V8 engine to exhaust its call stack and throw RangeError: Maximum call stack size exceeded, crashing or incapacitating the process handling the parse. This is a remote, low-cost Denial-of-Service against applications that parse untrusted ASN.1 objects.
5.3 (Medium)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2026:1730
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in urllib3 Python library that could lead to a Denial of Service condition. A remote, malicious server can exploit this flaw by responding to a client request with an HTTP message that uses an excessive number of chained compression algorithms. This unlimited decompression chain causes the client system to consume a virtually unbounded amount of CPU resources and memory. The high resource usage leads to service disruption, making the application unresponsive.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2026:1730
A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header (e.g., gzip, deflate, br, or zstd). The library must read compressed data from the network and decompress it until the requested chunk size is met. Any resulting decompressed data that exceeds the requested amount is held in an internal buffer for the next read operation. The decompression logic could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This can result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data; CWE-409) on the client side, even if the application only requested a small chunk of data.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2026:1730
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in Fulcio, a free-to-use certificate authority. This vulnerability allows a denial of service (DoS) due to excessive memory allocation when processing a malicious OpenID Connect (OIDC) identity token containing numerous period characters.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2026:1730
urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression based on the HTTP `Content-Encoding` header (e.g., `gzip`, `deflate`, `br`, or `zstd`). When using the streaming API, the library decompresses only the necessary bytes, enabling partial content consumption. Starting in version 1.22 and prior to version 2.6.3, for HTTP redirect responses, the library would read the entire response body to drain the connection and decompress the content unnecessarily. This decompression occurred even before any read methods were called, and configured read limits did not restrict the amount of decompressed data. As a result, there was no safeguard against decompression bombs. A malicious server could exploit this to trigger excessive resource consumption on the client. Applications and libraries are affected when they stream content from untrusted sources by setting `preload_content=False` when they do not disable redirects. Users should upgrade to at least urllib3 v2.6.3, in which the library does not decode content of redirect responses when `preload_content=False`. If upgrading is not immediately possible, disable redirects by setting `redirect=False` for requests to untrusted source.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2026:1730
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.12.13 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.12.13",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:1730",
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-34156",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45337",
"url": "https://access.redhat.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45338",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-12816",
"url": "https://access.redhat.com/security/cve/CVE-2025-12816"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-15284",
"url": "https://access.redhat.com/security/cve/CVE-2025-15284"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-52881",
"url": "https://access.redhat.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-65945",
"url": "https://access.redhat.com/security/cve/CVE-2025-65945"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66031",
"url": "https://access.redhat.com/security/cve/CVE-2025-66031"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66418",
"url": "https://access.redhat.com/security/cve/CVE-2025-66418"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66471",
"url": "https://access.redhat.com/security/cve/CVE-2025-66471"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66506",
"url": "https://access.redhat.com/security/cve/CVE-2025-66506"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-21441",
"url": "https://access.redhat.com/security/cve/CVE-2026-21441"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_1730.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.12.13",
"tracking": {
"current_release_date": "2026-05-07T07:29:42+00:00",
"generator": {
"date": "2026-05-07T07:29:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2026:1730",
"initial_release_date": "2026-02-02T15:52:56+00:00",
"revision_history": [
{
"date": "2026-02-02T15:52:56+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-02-02T15:52:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-07T07:29:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.12",
"product": {
"name": "Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.12::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Ae82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1769852013"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1769466677"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1769810112"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1769812327"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1769811895"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1769718571"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1769000026"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769852013"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3Ad6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769802588"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769466677"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3Aedc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769810760"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Acc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769810112"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Acd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769812327"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3Af2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769811895"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769718571"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3A6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769855900"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Af5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769000026"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769852013"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769466677"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769810112"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Aed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769812327"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769811895"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769718571"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1769000026"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1769466677"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Ae8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1769810112"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Aa1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1769812327"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1769811895"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1769718571"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3Af2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1769000026"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Af58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1769852013"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64 as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x as a component of Red Hat Quay 3.12",
"product_id": "Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x",
"relates_to_product_reference": "Red Hat Quay 3.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T15:52:56+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-45337",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2024-12-11T19:00:54.247490+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2331720"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the x/crypto/ssh go library. Applications and libraries that misuse the ServerConfig.PublicKeyCallback callback may be susceptible to an authorization bypass. For example, an attacker may send public keys A and B and authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B, for which the attacker does not control the private key. The misuse of ServerConfig.PublicKeyCallback may cause an authorization bypass.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as important rather than critical because it does not directly enable unauthorized access but rather introduces a risk of authorization bypass if the application or library misuses the PublicKeyCallback API. The vulnerability relies on incorrect assumptions made by the application when handling the sequence or state of keys provided during SSH authentication. Properly implemented systems that use the Permissions field or avoid relying on external state remain unaffected. Additionally, the vulnerability does not allow direct exploitation to gain control over a system without the presence of insecure logic in the application\u0027s handling of authentication attempts.\n\n\nRed Hat Enterprise Linux(RHEL) 8 \u0026 9 and Red Hat Openshift marked as not affected as it was determined that the problem function `ServerConfig.PublicKeyCallback`, as noted in the CVE-2024-45337 issue, is not called by Podman, Buildah, containers-common, or the gvisor-tap-vsock projects.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "RHBZ#2331720",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2331720"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45337"
},
{
"category": "external",
"summary": "https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909",
"url": "https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909"
},
{
"category": "external",
"summary": "https://go.dev/cl/635315",
"url": "https://go.dev/cl/635315"
},
{
"category": "external",
"summary": "https://go.dev/issue/70779",
"url": "https://go.dev/issue/70779"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/-nPEi39gI4Q/m/cGVPJCqdAQAJ",
"url": "https://groups.google.com/g/golang-announce/c/-nPEi39gI4Q/m/cGVPJCqdAQAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3321",
"url": "https://pkg.go.dev/vuln/GO-2024-3321"
}
],
"release_date": "2024-12-11T18:55:58.506000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T15:52:56+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T15:52:56+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"cve": "CVE-2025-12816",
"cwe": {
"id": "CWE-179",
"name": "Incorrect Behavior Order: Early Validation"
},
"discovery_date": "2025-11-25T20:01:05.875196+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2417097"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in node-forge. This vulnerability allows unauthenticated attackers to bypass downstream cryptographic verifications and security decisions via crafting ASN.1 (Abstract Syntax Notation One) structures to desynchronize schema validations, yielding a semantic divergence.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-forge: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat products due to an interpretation conflict in the node-forge library. An unauthenticated attacker could exploit this flaw by crafting malicious ASN.1 structures, leading to a bypass of cryptographic verifications and security decisions in affected applications. This impacts various Red Hat products that utilize node-forge for cryptographic operations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-12816"
},
{
"category": "external",
"summary": "RHBZ#2417097",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2417097"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-12816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12816"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-12816",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12816"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge",
"url": "https://github.com/digitalbazaar/forge"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge/pull/1124",
"url": "https://github.com/digitalbazaar/forge/pull/1124"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq",
"url": "https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq"
},
{
"category": "external",
"summary": "https://kb.cert.org/vuls/id/521113",
"url": "https://kb.cert.org/vuls/id/521113"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/node-forge",
"url": "https://www.npmjs.com/package/node-forge"
}
],
"release_date": "2025-11-25T19:15:50.243000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T15:52:56+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "node-forge: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications"
},
{
"cve": "CVE-2025-15284",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-12-29T23:00:58.541337+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2425946"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in qs, a module used for parsing query strings. A remote attacker can exploit an improper input validation vulnerability by sending specially crafted HTTP requests that use bracket notation (e.g., `a[]=value`). This bypasses the `arrayLimit` option, which is designed to limit the size of parsed arrays and prevent resource exhaustion. Successful exploitation can lead to memory exhaustion, causing a Denial of Service (DoS) where the application crashes or becomes unresponsive, making the service unavailable to users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "qs: qs: Denial of Service via improper input validation in array parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat products that utilize the `qs` module for parsing query strings, particularly when processing user-controlled input with bracket notation. The `arrayLimit` option, intended to prevent resource exhaustion, is bypassed when bracket notation (`a[]=value`) is used, allowing a remote attacker to cause a denial of service through memory exhaustion. This can lead to application crashes or unresponsiveness, making the service unavailable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-15284"
},
{
"category": "external",
"summary": "RHBZ#2425946",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2425946"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-15284",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-15284"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-15284",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15284"
},
{
"category": "external",
"summary": "https://github.com/ljharb/qs/commit/3086902ecf7f088d0d1803887643ac6c03d415b9",
"url": "https://github.com/ljharb/qs/commit/3086902ecf7f088d0d1803887643ac6c03d415b9"
},
{
"category": "external",
"summary": "https://github.com/ljharb/qs/security/advisories/GHSA-6rw7-vpxm-498p",
"url": "https://github.com/ljharb/qs/security/advisories/GHSA-6rw7-vpxm-498p"
}
],
"release_date": "2025-12-29T22:56:45.240000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T15:52:56+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "qs: qs: Denial of Service via improper input validation in array parsing"
},
{
"cve": "CVE-2025-52881",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-10-17T14:19:18.652000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2404715"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat considers this as an Important flaw since the impact is limited to local attack with minimal privileges in order to jeopardize the environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "RHBZ#2404715",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404715"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-52881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52881"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm",
"url": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/selinux/pull/237",
"url": "https://github.com/opencontainers/selinux/pull/237"
}
],
"release_date": "2025-11-05T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T15:52:56+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
},
{
"category": "workaround",
"details": "Potential mitigations for this issue include:\n\n* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).\n* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects"
},
{
"cve": "CVE-2025-65945",
"cwe": {
"id": "CWE-347",
"name": "Improper Verification of Cryptographic Signature"
},
"discovery_date": "2025-12-04T19:01:14.733682+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418904"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in auth0/node-jws. This vulnerability allows improper signature verification via using the HS256 (Hash-based Message Authentication Code using SHA-256) algorithm under specific conditions, where applications use the jws.createVerify() function for HMAC (Keyed-Hash Message Authentication Code) algorithms and user-provided data from the JSON (JavaScript Object Notation) Web Signature protected header or payload in HMAC secret lookup routines.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-jws: auth0/node-jws: Improper signature verification in HS256 algorithm",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-65945"
},
{
"category": "external",
"summary": "RHBZ#2418904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418904"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-65945",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-65945"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-65945",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-65945"
},
{
"category": "external",
"summary": "https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e",
"url": "https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e"
},
{
"category": "external",
"summary": "https://github.com/auth0/node-jws/security/advisories/GHSA-869p-cjfg-cm3x",
"url": "https://github.com/auth0/node-jws/security/advisories/GHSA-869p-cjfg-cm3x"
}
],
"release_date": "2025-12-04T18:45:37.517000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T15:52:56+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "node-jws: auth0/node-jws: Improper signature verification in HS256 algorithm"
},
{
"cve": "CVE-2025-66031",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2025-11-26T23:01:36.363253+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2417397"
}
],
"notes": [
{
"category": "description",
"text": "An ASN.1 Denial of Service (Dos) vulnerability exists in the node-forge asn1.fromDer function within forge/lib/asn1.js. The ASN.1 DER parser implementation (_fromDer) recurses for every constructed ASN.1 value (SEQUENCE, SET, etc.) and lacks a guard limiting recursion depth. An attacker can craft a small DER blob containing a very large nesting depth of constructed TLVs which causes the Node.js V8 engine to exhaust its call stack and throw RangeError: Maximum call stack size exceeded, crashing or incapacitating the process handling the parse. This is a remote, low-cost Denial-of-Service against applications that parse untrusted ASN.1 objects.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-forge: node-forge ASN.1 Unbounded Recursion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66031"
},
{
"category": "external",
"summary": "RHBZ#2417397",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2417397"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66031",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66031"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66031",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66031"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge/commit/260425c6167a38aae038697132483b5517b26451",
"url": "https://github.com/digitalbazaar/forge/commit/260425c6167a38aae038697132483b5517b26451"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge/security/advisories/GHSA-554w-wpv2-vw27",
"url": "https://github.com/digitalbazaar/forge/security/advisories/GHSA-554w-wpv2-vw27"
}
],
"release_date": "2025-11-26T22:23:26.013000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T15:52:56+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "node-forge: node-forge ASN.1 Unbounded Recursion"
},
{
"cve": "CVE-2025-66418",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-12-05T17:01:20.277857+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419455"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in urllib3 Python library that could lead to a Denial of Service condition. A remote, malicious server can exploit this flaw by responding to a client request with an HTTP message that uses an excessive number of chained compression algorithms. This unlimited decompression chain causes the client system to consume a virtually unbounded amount of CPU resources and memory. The high resource usage leads to service disruption, making the application unresponsive.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66418"
},
{
"category": "external",
"summary": "RHBZ#2419455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419455"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66418",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66418"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66418",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66418"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/24d7b67eac89f94e11003424bcf0d8f7b72222a8",
"url": "https://github.com/urllib3/urllib3/commit/24d7b67eac89f94e11003424bcf0d8f7b72222a8"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-gm62-xv2j-4w53",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-gm62-xv2j-4w53"
}
],
"release_date": "2025-12-05T16:02:15.271000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T15:52:56+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion"
},
{
"cve": "CVE-2025-66471",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2025-12-05T17:02:21.597728+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419467"
}
],
"notes": [
{
"category": "description",
"text": "A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header (e.g., gzip, deflate, br, or zstd). The library must read compressed data from the network and decompress it until the requested chunk size is met. Any resulting decompressed data that exceeds the requested amount is held in an internal buffer for the next read operation. The decompression logic could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This can result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data; CWE-409) on the client side, even if the application only requested a small chunk of data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3 Streaming API improperly handles highly compressed data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66471"
},
{
"category": "external",
"summary": "RHBZ#2419467",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419467"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66471",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66471"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66471",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66471"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716ed7",
"url": "https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716ed7"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37"
}
],
"release_date": "2025-12-05T16:06:08.531000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T15:52:56+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3 Streaming API improperly handles highly compressed data"
},
{
"cve": "CVE-2025-66506",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-12-04T23:01:20.507333+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419056"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Fulcio, a free-to-use certificate authority. This vulnerability allows a denial of service (DoS) due to excessive memory allocation when processing a malicious OpenID Connect (OIDC) identity token containing numerous period characters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/sigstore/fulcio: Fulcio: Denial of Service via crafted OpenID Connect (OIDC) token",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat as Fulcio, a certificate authority used for issuing code signing certificates, is susceptible to a denial of service when processing a specially crafted OpenID Connect (OIDC) token. This could lead to resource exhaustion and service unavailability in affected Red Hat products that utilize Fulcio.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66506"
},
{
"category": "external",
"summary": "RHBZ#2419056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419056"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66506",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66506"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66506",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66506"
},
{
"category": "external",
"summary": "https://github.com/sigstore/fulcio/commit/765a0e57608b9ef390e1eeeea8595b9054c63a5a",
"url": "https://github.com/sigstore/fulcio/commit/765a0e57608b9ef390e1eeeea8595b9054c63a5a"
},
{
"category": "external",
"summary": "https://github.com/sigstore/fulcio/security/advisories/GHSA-f83f-xpx7-ffpw",
"url": "https://github.com/sigstore/fulcio/security/advisories/GHSA-f83f-xpx7-ffpw"
}
],
"release_date": "2025-12-04T22:04:41.637000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T15:52:56+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/sigstore/fulcio: Fulcio: Denial of Service via crafted OpenID Connect (OIDC) token"
},
{
"cve": "CVE-2026-21441",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2026-01-07T23:01:59.422078+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2427726"
}
],
"notes": [
{
"category": "description",
"text": "urllib3 is an HTTP client library for Python. urllib3\u0027s streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression based on the HTTP `Content-Encoding` header (e.g., `gzip`, `deflate`, `br`, or `zstd`). When using the streaming API, the library decompresses only the necessary bytes, enabling partial content consumption. Starting in version 1.22 and prior to version 2.6.3, for HTTP redirect responses, the library would read the entire response body to drain the connection and decompress the content unnecessarily. This decompression occurred even before any read methods were called, and configured read limits did not restrict the amount of decompressed data. As a result, there was no safeguard against decompression bombs. A malicious server could exploit this to trigger excessive resource consumption on the client. Applications and libraries are affected when they stream content from untrusted sources by setting `preload_content=False` when they do not disable redirects. Users should upgrade to at least urllib3 v2.6.3, in which the library does not decode content of redirect responses when `preload_content=False`. If upgrading is not immediately possible, disable redirects by setting `redirect=False` for requests to untrusted source.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"known_not_affected": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-21441"
},
{
"category": "external",
"summary": "RHBZ#2427726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-21441",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21441"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-21441",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-21441"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/8864ac407bba8607950025e0979c4c69bc7abc7b",
"url": "https://github.com/urllib3/urllib3/commit/8864ac407bba8607950025e0979c4c69bc7abc7b"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-38jv-5279-wg99",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-38jv-5279-wg99"
}
],
"release_date": "2026-01-07T22:09:01.936000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T15:52:56+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1730"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:056dc564e4f8ee5ee816c008b962ca6e2de3b3e86c60fd2805654b6054948caa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:24eeadd822f6f30c5e587e9d3eba06f1856a2c2e9f47daf4bad706146f50382a_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:338cd06dcc742eb7f37b3ca02ff6c5902630e1466ce3dc6b73b49c1b2b8562fa_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/clair-rhel8@sha256:92e8d6d910fa92fb05e4e0a8046b03090643509fe2a67f8efc8e1bb2b93aba10_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:edc72269317914b4612ffe859a558a886b5a244d99c016896b126f1dd35fb299_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:11c27678e7d181621669548757d07cc9ed5be4e55043d4676fd4a2fb41433498_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1f9c64d9e2b9c6c1ae2fc5d00c83498a9bb8db3a0cf5fd3545a49cce65a998ef_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:cc4a64957a3e97ee564e895c50d451dd0cd472ea635a258db2ea3a0bac83e242_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:e8980b92b3c6c5fe6cb076121faba33f0c70bb980e349172c0d3732c52ab8c09_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:47e327e54e2dfd7b990a196e8864262ff2ce94e760caa96a163f44fb51119f18_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:a1f93c08e02b3b2651f50bcdb8297a66a4f8a5221284f30c9a3a65a14784c824_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:cd984016e01cde762b5958b8e7f8ea9f17828348104f074424a3ed14604a2544_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:ed9b563d9a2133239537b37954bbba96ba6e17f9f64d899cfd51688b9bed040a_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:3b19f8efe886a379fcad216b583de6c962a231159020f363323d531c330350de_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:53c55f81a10b84f6c7756a98c30f6c018736d8691440408ded75a9d60d20abd7_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:907981736598e7544bebfc8d174fea92cc9a7769d649cbe8ce3cc296e6953856_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-builder-rhel8@sha256:f2f9b7f06fe1847d49a1d94069e1052b021f2169fb036f2b886f2f70859914de_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:d6728285a5552f62e96c93eb5b0eba181582890c4fce1a0b56758d2b3c4bbdcd_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:39a26364fc2794512c6862fd0333df158d8301ca82eabf53959561fc39fbbe0f_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:412a23db39debcda082d6d85807a7983aa474e3eea8f6780c619d0b371af16ae_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:5e8ae98348f50d6a50ff31a3b099afb84109ea0892b9408d16f6f32b0b657048_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:63e2f0159c3521ea5d908f331979836af72c32f18104bcf915feab123e294dd1_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-bundle@sha256:6e048b97ef55a2ad081250608152c08613075713d9b10d7558becfb19ded8e45_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:19951763d79334b5e566c8d9b5acf9524268d1e5864a574632363cf540678184_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:86224e8f5d9f5ede57e90166cde9802c1ef956737b711935b9269b387ea5b68b_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f2c4a003335692f84e68cb660d61581a68c89607ec92fca9ca08a7e98efc8c63_s390x",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-operator-rhel8@sha256:f5050789c44ce9c4de52aa34acf375efe97708a313280e395e34a6d306e5d1e0_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:03a485b1c02f5155f22c7820c166889b3f7d7b479892bb4d106432fa2dbf217b_arm64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:117876c6c6a12beb25983da60c8c1628f350a1797888b9f03c44b9dd737844fa_amd64",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:e82aac09336b0a36d5bc896826891ec41714ea1e05aac345a49abc4915b255ee_ppc64le",
"Red Hat Quay 3.12:registry.redhat.io/quay/quay-rhel8@sha256:f58b0c52270707e15747b431520150641019c9b215e864c8dfe8dec1f6e94caf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)"
}
]
}
RHSA-2026:2695
Vulnerability from csaf_redhat - Published: 2026-02-12 22:43 - Updated: 2026-05-07 07:29Summary
Red Hat Security Advisory: RHOAI 2.25.2 - Red Hat OpenShift AI
Severity
Important
Notes
Topic: Updated images are now available for Red Hat OpenShift AI.
Details: Release of RHOAI 2.25.2 provides these changes:
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Red Hat OpenShift AI (RHOAI) llama-stack-operator. This vulnerability allows unauthorized access to Llama Stack services deployed in other namespaces via direct network requests, because no NetworkPolicy restricts access to the llama-stack service endpoint. As a result, a user in one namespace can access another user’s Llama Stack instance and potentially view or manipulate sensitive data.
8.1 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in node-forge. This vulnerability allows unauthenticated attackers to bypass downstream cryptographic verifications and security decisions via crafting ASN.1 (Abstract Syntax Notation One) structures to desynchronize schema validations, yielding a semantic divergence.
8.7 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
A flaw was found in Hugging Face Accelerate. A remote attacker can achieve arbitrary code execution by exploiting a deserialization of untrusted data vulnerability. This occurs when the target visits a malicious page or opens a malicious file, leading to improper validation of user-supplied data during the parsing of checkpoints. Successful exploitation allows the attacker to execute code in the context of the current process.
7.8 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
Workaround
To mitigate this issue, users should avoid processing untrusted checkpoint files or visiting untrusted web pages with applications utilizing Hugging Face Accelerate. Restricting the sources of input data for affected components can significantly reduce the attack surface. No service restart is required for this operational control.
A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.
8.2 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
Workaround
Potential mitigations for this issue include:
* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).
* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.
This vulnerability in fontTools varLib allows a crafted .designspace file to trigger arbitrary file writes and XML-based content injection during variable-font generation. Because filenames are not sanitized, an attacker can use path traversal to overwrite files anywhere on the filesystem, and malicious payloads embedded in XML labelname elements can be injected directly into the generated output. When these overwritten files reside in executable or web-served locations, this can enable local remote-code execution or corruption of application or configuration files. The issue affects the varLib CLI and any code that invokes fontTools.varLib.main().
6.3 (Medium)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
Workaround
To mitigate this issue, avoid processing untrusted .designspace files with the fontTools varLib script or any application that invokes fontTools.varLib.main(). Restrict the execution environment of processes handling .designspace files to minimize potential impact from arbitrary file writes. If the fonttools package is not required, consider removing it.
A flaw was found in urllib3 Python library that could lead to a Denial of Service condition. A remote, malicious server can exploit this flaw by responding to a client request with an HTTP message that uses an excessive number of chained compression algorithms. This unlimited decompression chain causes the client system to consume a virtually unbounded amount of CPU resources and memory. The high resource usage leads to service disruption, making the application unresponsive.
7.5 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header (e.g., gzip, deflate, br, or zstd). The library must read compressed data from the network and decompress it until the requested chunk size is met. Any resulting decompressed data that exceeds the requested amount is held in an internal buffer for the next read operation. The decompression logic could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This can result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data; CWE-409) on the client side, even if the application only requested a small chunk of data.
7.5 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in Fulcio, a free-to-use certificate authority. This vulnerability allows a denial of service (DoS) due to excessive memory allocation when processing a malicious OpenID Connect (OIDC) identity token containing numerous period characters.
7.5 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
A path traversal and arbitrary file overwrite vulnerability has been identified in Argo Workflows during the extraction of archived artifacts, where symbolic links inside a crafted archive are not safely validated before file extraction. An attacker could exploit this flaw by submitting a malicious archive containing symbolic links that point outside the intended extraction directory, causing files to be written or overwritten in unintended locations within the workflow pod. Successful exploitation may allow an attacker to overwrite execution control files and achieve arbitrary command execution during pod startup.
8.3 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
Workaround
No mitigation is currently available that meets Red Hat Product Security’s standards for usability, deployment, applicability, or stability.
A flaw was found in Expr, an expression language and expression evaluation for Go. This vulnerability allows a denial of service (DoS) via recursive traversal over user-provided deeply nested or cyclic data structures without enforcing a maximum recursion depth, leading to a stack overflow panic and application crash.
7.5 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
Workaround
To mitigate this issue, applications using the `Expr` library should ensure that evaluation environments do not contain cyclic references. Additionally, externally supplied data structures must be validated or sanitized before being passed to `Expr` for evaluation. As a last-resort defensive measure, expression evaluation can be wrapped with panic recovery to prevent a full process crash.
A flaw was found in KEDA, a Kubernetes-based Event Driven Autoscaling component. This arbitrary file read vulnerability allows an attacker with permissions to create or modify a TriggerAuthentication resource to read any file from the node's filesystem where the KEDA pod resides. This is due to insufficient path validation when handling Service Account Tokens during HashiCorp Vault authentication. Successful exploitation can lead to the exfiltration of sensitive system information, such as secrets or configuration files.
7.7 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
A decompression based denial of service flaw has been discovered in the AIOHTTP python library. Library versions 3.13.2 and below allow a zip bomb to be used to execute a DoS against the AIOHTTP server. An attacker may be able to send a compressed request that when decompressed by AIOHTTP could exhaust the host's memory.
7.5 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression based on the HTTP `Content-Encoding` header (e.g., `gzip`, `deflate`, `br`, or `zstd`). When using the streaming API, the library decompresses only the necessary bytes, enabling partial content consumption. Starting in version 1.22 and prior to version 2.6.3, for HTTP redirect responses, the library would read the entire response body to drain the connection and decompress the content unnecessarily. This decompression occurred even before any read methods were called, and configured read limits did not restrict the amount of decompressed data. As a result, there was no safeguard against decompression bombs. A malicious server could exploit this to trigger excessive resource consumption on the client. Applications and libraries are affected when they stream content from untrusted sources by setting `preload_content=False` when they do not disable redirects. Users should upgrade to at least urllib3 v2.6.3, in which the library does not decode content of redirect responses when `preload_content=False`. If upgrading is not immediately possible, disable redirects by setting `redirect=False` for requests to untrusted source.
7.5 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
A path traversal flaw has been discovered in the python wheel too. The unpack function is vulnerable to file permission modification through mishandling of file permissions after extraction. The logic blindly trusts the filename from the archive header for the chmod operation, even though the extraction process itself might have sanitized the path. Attackers can craft a malicious wheel file that, when unpacked, changes the permissions of critical system files (e.g., /etc/passwd, SSH keys, config files), allowing for Privilege Escalation or arbitrary code execution by modifying now-writable scripts.
7.1 (High)
Vendor Fix
For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:
https://docs.redhat.com/en/documentation/red_hat_openshift_ai/
https://access.redhat.com/errata/RHSA-2026:2695
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat OpenShift AI.",
"title": "Topic"
},
{
"category": "general",
"text": "Release of RHOAI 2.25.2 provides these changes:",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:2695",
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-12805",
"url": "https://access.redhat.com/security/cve/CVE-2025-12805"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-12816",
"url": "https://access.redhat.com/security/cve/CVE-2025-12816"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-14925",
"url": "https://access.redhat.com/security/cve/CVE-2025-14925"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-52881",
"url": "https://access.redhat.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66034",
"url": "https://access.redhat.com/security/cve/CVE-2025-66034"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66418",
"url": "https://access.redhat.com/security/cve/CVE-2025-66418"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66471",
"url": "https://access.redhat.com/security/cve/CVE-2025-66471"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66506",
"url": "https://access.redhat.com/security/cve/CVE-2025-66506"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66626",
"url": "https://access.redhat.com/security/cve/CVE-2025-66626"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68156",
"url": "https://access.redhat.com/security/cve/CVE-2025-68156"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68476",
"url": "https://access.redhat.com/security/cve/CVE-2025-68476"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-69223",
"url": "https://access.redhat.com/security/cve/CVE-2025-69223"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-21441",
"url": "https://access.redhat.com/security/cve/CVE-2026-21441"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-24049",
"url": "https://access.redhat.com/security/cve/CVE-2026-24049"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"url": "https://docs.redhat.com/en/documentation/red_hat_openshift_ai/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_2695.json"
}
],
"title": "Red Hat Security Advisory: RHOAI 2.25.2 - Red Hat OpenShift AI",
"tracking": {
"current_release_date": "2026-05-07T07:29:46+00:00",
"generator": {
"date": "2026-05-07T07:29:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2026:2695",
"initial_release_date": "2026-02-12T22:43:13+00:00",
"revision_history": [
{
"date": "2026-02-12T22:43:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-02-12T22:43:22+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-07T07:29:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift AI 2.25",
"product": {
"name": "Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_ai:2.25::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift AI"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"product_id": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-rhel9-operator@sha256%3Aeedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770825519"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"product_id": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-dashboard-rhel9@sha256%3Aa15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770641923"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"product_id": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-kf-notebook-controller-rhel9@sha256%3A7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281700"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"product_id": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-kueue-controller-rhel9@sha256%3A56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770282006"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"product_id": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-mod-arch-model-registry-rhel9@sha256%3A86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770642057"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"product_id": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-controller-rhel9@sha256%3A29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770624309"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-job-async-upload-rhel9@sha256%3A25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770358847"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-operator-rhel9@sha256%3Ae94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770297362"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-rhel9@sha256%3A22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770326269"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"product_id": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-notebook-controller-rhel9@sha256%3Ab84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281702"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"product_id": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-trustyai-service-rhel9@sha256%3A05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770313681"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x",
"product_id": "registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-vllm-cpu-rhel9@sha256%3Abab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770816984"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"product_id": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-codeflare-operator-rhel9@sha256%3A2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281761"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"product_id": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-dashboard-rhel9@sha256%3Ace1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770641923"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"product_id": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-data-science-pipelines-argo-argoexec-rhel9@sha256%3A42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281866"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"product_id": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256%3A04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770282201"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"product_id": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-data-science-pipelines-operator-controller-rhel9@sha256%3Ac51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281698"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"product_id": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-kf-notebook-controller-rhel9@sha256%3Acf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281700"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"product_id": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-kuberay-operator-controller-rhel9@sha256%3A7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770786164"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"product_id": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-kueue-controller-rhel9@sha256%3A633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770282006"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"product_id": "registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-llama-stack-k8s-operator-rhel9@sha256%3Ae8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770788315"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-api-server-v2-rhel9@sha256%3Aade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296268"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-driver-rhel9@sha256%3A820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296001"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-launcher-rhel9@sha256%3Af01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770295985"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256%3A7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296071"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-runtime-generic-rhel9@sha256%3A114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770786633"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256%3A9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296052"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"product_id": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-mlmd-grpc-server-rhel9@sha256%3A5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770297372"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"product_id": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-mm-rest-proxy-rhel9@sha256%3Aaf7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296950"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"product_id": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-mod-arch-model-registry-rhel9@sha256%3Af9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770642057"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"product_id": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-controller-rhel9@sha256%3A0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770624309"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-job-async-upload-rhel9@sha256%3A9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770358847"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-operator-rhel9@sha256%3Aeb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770297362"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-rhel9@sha256%3A741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770326269"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"product_id": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-modelmesh-runtime-adapter-rhel9@sha256%3A4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770298324"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"product_id": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-modelmesh-serving-controller-rhel9@sha256%3Aef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770297416"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"product_id": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-modelmesh-rhel9@sha256%3A3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770341154"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"product_id": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-notebook-controller-rhel9@sha256%3A6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281702"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"product_id": "registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-openvino-model-server-rhel9@sha256%3A84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770621450"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"product_id": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-operator-bundle@sha256%3A74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770828479"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"product_id": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-rhel9-operator@sha256%3A53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770825519"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"product_id": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-training-operator-rhel9@sha256%3Aba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770313067"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"product_id": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-trustyai-service-rhel9@sha256%3A883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770313681"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"product_id": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-codeflare-operator-rhel9@sha256%3A53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281761"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"product_id": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-dashboard-rhel9@sha256%3A4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770641923"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"product_id": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-data-science-pipelines-argo-argoexec-rhel9@sha256%3A56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281866"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"product_id": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256%3A33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770282201"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"product_id": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-data-science-pipelines-operator-controller-rhel9@sha256%3A12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281698"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"product_id": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-kf-notebook-controller-rhel9@sha256%3A72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281700"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"product_id": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-kuberay-operator-controller-rhel9@sha256%3A2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770786164"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"product_id": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-kueue-controller-rhel9@sha256%3Aff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770282006"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"product_id": "registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-llama-stack-k8s-operator-rhel9@sha256%3A1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770788315"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-api-server-v2-rhel9@sha256%3A8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296268"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-driver-rhel9@sha256%3A3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296001"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-launcher-rhel9@sha256%3A8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770295985"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256%3A1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296071"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-runtime-generic-rhel9@sha256%3A816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770786633"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256%3Af0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296052"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"product_id": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-mlmd-grpc-server-rhel9@sha256%3A3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770297372"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"product_id": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-mm-rest-proxy-rhel9@sha256%3Acf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296950"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"product_id": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-mod-arch-model-registry-rhel9@sha256%3A5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770642057"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"product_id": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-controller-rhel9@sha256%3Ae7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770624309"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-job-async-upload-rhel9@sha256%3Aa7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770358847"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-operator-rhel9@sha256%3A37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770297362"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-rhel9@sha256%3A49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770326269"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"product_id": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-modelmesh-runtime-adapter-rhel9@sha256%3Aa26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770298324"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"product_id": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-modelmesh-serving-controller-rhel9@sha256%3A1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770297416"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"product_id": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-modelmesh-rhel9@sha256%3A83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770341154"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"product_id": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-notebook-controller-rhel9@sha256%3A659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281702"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"product_id": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-rhel9-operator@sha256%3A890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770825519"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"product_id": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-training-operator-rhel9@sha256%3A4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770313067"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"product_id": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-trustyai-service-rhel9@sha256%3Ab7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770313681"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-dashboard-rhel9@sha256%3A4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770641923"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-data-science-pipelines-argo-argoexec-rhel9@sha256%3A84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281866"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256%3Ad2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770282201"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-data-science-pipelines-operator-controller-rhel9@sha256%3A1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281698"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-kf-notebook-controller-rhel9@sha256%3A1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281700"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-kueue-controller-rhel9@sha256%3A3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770282006"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-api-server-v2-rhel9@sha256%3A5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296268"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-driver-rhel9@sha256%3Ad9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296001"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-launcher-rhel9@sha256%3A95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770295985"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256%3A68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296071"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-runtime-generic-rhel9@sha256%3A6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770786633"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256%3A1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770296052"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-mlmd-grpc-server-rhel9@sha256%3Af441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770297372"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-mod-arch-model-registry-rhel9@sha256%3A331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770642057"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-controller-rhel9@sha256%3A2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770624309"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-job-async-upload-rhel9@sha256%3A5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770358847"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-operator-rhel9@sha256%3A2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770297362"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-rhel9@sha256%3A9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770326269"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-notebook-controller-rhel9@sha256%3A1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770281702"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-rhel9-operator@sha256%3A9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770825519"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-training-operator-rhel9@sha256%3A12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770313067"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-trustyai-service-rhel9@sha256%3Ad29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770313681"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-vllm-cpu-rhel9@sha256%3A5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=1770816984"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64 as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x as a component of Red Hat OpenShift AI 2.25",
"product_id": "Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.25"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-12805",
"cwe": {
"id": "CWE-653",
"name": "Improper Isolation or Compartmentalization"
},
"discovery_date": "2025-11-06T13:38:39.035000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2413101"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Red Hat OpenShift AI (RHOAI) llama-stack-operator. This vulnerability allows unauthorized access to Llama Stack services deployed in other namespaces via direct network requests, because no NetworkPolicy restricts access to the llama-stack service endpoint. As a result, a user in one namespace can access another user\u2019s Llama Stack instance and potentially view or manipulate sensitive data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "llama-stack-k8s-operator: Llama Stack service exposed across namespaces due to missing NetworkPolicy",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an IMPORTANT flaw in Red Hat OpenShift AI (RHOAI). The `llama-stack-operator` fails to implement a `NetworkPolicy`, enabling unauthorized access to Llama Stack services across different namespaces. This allows users to potentially view or manipulate sensitive data belonging to other users within the same RHOAI instance.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-12805"
},
{
"category": "external",
"summary": "RHBZ#2413101",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413101"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-12805",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12805"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-12805",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12805"
}
],
"release_date": "2025-12-31T23:59:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "llama-stack-k8s-operator: Llama Stack service exposed across namespaces due to missing NetworkPolicy"
},
{
"cve": "CVE-2025-12816",
"cwe": {
"id": "CWE-179",
"name": "Incorrect Behavior Order: Early Validation"
},
"discovery_date": "2025-11-25T20:01:05.875196+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2417097"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in node-forge. This vulnerability allows unauthenticated attackers to bypass downstream cryptographic verifications and security decisions via crafting ASN.1 (Abstract Syntax Notation One) structures to desynchronize schema validations, yielding a semantic divergence.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-forge: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat products due to an interpretation conflict in the node-forge library. An unauthenticated attacker could exploit this flaw by crafting malicious ASN.1 structures, leading to a bypass of cryptographic verifications and security decisions in affected applications. This impacts various Red Hat products that utilize node-forge for cryptographic operations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-12816"
},
{
"category": "external",
"summary": "RHBZ#2417097",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2417097"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-12816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12816"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-12816",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12816"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge",
"url": "https://github.com/digitalbazaar/forge"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge/pull/1124",
"url": "https://github.com/digitalbazaar/forge/pull/1124"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq",
"url": "https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq"
},
{
"category": "external",
"summary": "https://kb.cert.org/vuls/id/521113",
"url": "https://kb.cert.org/vuls/id/521113"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/node-forge",
"url": "https://www.npmjs.com/package/node-forge"
}
],
"release_date": "2025-11-25T19:15:50.243000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "node-forge: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications"
},
{
"cve": "CVE-2025-14925",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2025-12-23T22:03:38.271814+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2424745"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Hugging Face Accelerate. A remote attacker can achieve arbitrary code execution by exploiting a deserialization of untrusted data vulnerability. This occurs when the target visits a malicious page or opens a malicious file, leading to improper validation of user-supplied data during the parsing of checkpoints. Successful exploitation allows the attacker to execute code in the context of the current process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "accelerate: Hugging Face Accelerate: Remote Code Execution via Deserialization of Untrusted Data",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat products as it allows remote code execution via deserialization of untrusted data in Hugging Face Accelerate. Exploitation requires user interaction, where a target must open a specially crafted malicious file or visit a malicious page. This flaw affects components within Red Hat AI Inference Server, OpenShift Lightspeed, Red Hat Enterprise Linux AI, and Red Hat OpenShift AI.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-14925"
},
{
"category": "external",
"summary": "RHBZ#2424745",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2424745"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-14925",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14925"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-14925",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14925"
},
{
"category": "external",
"summary": "https://www.zerodayinitiative.com/advisories/ZDI-25-1140/",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-25-1140/"
}
],
"release_date": "2025-12-23T21:05:07.497000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
},
{
"category": "workaround",
"details": "To mitigate this issue, users should avoid processing untrusted checkpoint files or visiting untrusted web pages with applications utilizing Hugging Face Accelerate. Restricting the sources of input data for affected components can significantly reduce the attack surface. No service restart is required for this operational control.",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "accelerate: Hugging Face Accelerate: Remote Code Execution via Deserialization of Untrusted Data"
},
{
"cve": "CVE-2025-52881",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-10-17T14:19:18.652000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2404715"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat considers this as an Important flaw since the impact is limited to local attack with minimal privileges in order to jeopardize the environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "RHBZ#2404715",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404715"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-52881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52881"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm",
"url": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/selinux/pull/237",
"url": "https://github.com/opencontainers/selinux/pull/237"
}
],
"release_date": "2025-11-05T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
},
{
"category": "workaround",
"details": "Potential mitigations for this issue include:\n\n* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).\n* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects"
},
{
"cve": "CVE-2025-66034",
"cwe": {
"id": "CWE-91",
"name": "XML Injection (aka Blind XPath Injection)"
},
"discovery_date": "2025-11-29T02:01:04.281026+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2417780"
}
],
"notes": [
{
"category": "description",
"text": "This vulnerability in fontTools varLib allows a crafted .designspace file to trigger arbitrary file writes and XML-based content injection during variable-font generation. Because filenames are not sanitized, an attacker can use path traversal to overwrite files anywhere on the filesystem, and malicious payloads embedded in XML labelname elements can be injected directly into the generated output. When these overwritten files reside in executable or web-served locations, this can enable local remote-code execution or corruption of application or configuration files. The issue affects the varLib CLI and any code that invokes fontTools.varLib.main().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fonttools: fontTools: Arbitrary file write leading to remote code execution via malicious .designspace file",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated Moderate rather than Important because the exploitability hinges on several limiting technical factors despite the high integrity impact. The arbitrary file-write and XML-injection pathways are only reachable when a user or automated workflow locally processes a malicious .designspace file, giving the flaw a local attack vector (AV:L) and requiring explicit user interaction (UI:R)\u2014meaning an attacker cannot trigger it remotely over the network. The attack also involves high complexity (AC:H), as it depends on crafted designspace structures, controlled font sources, and specific invocation of fonttools varLib or code that directly calls varLib.main(). Additionally, the vulnerability does not expose confidentiality, and availability effects are limited to potential file corruption. These constraints significantly narrow real-world exposure, keeping the risk profile in the Moderate range despite the possibility of high local integrity impact when exploited.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66034"
},
{
"category": "external",
"summary": "RHBZ#2417780",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2417780"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66034",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66034"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66034",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66034"
},
{
"category": "external",
"summary": "https://github.com/fonttools/fonttools/commit/a696d5ba93270d5954f98e7cab5ddca8a02c1e32",
"url": "https://github.com/fonttools/fonttools/commit/a696d5ba93270d5954f98e7cab5ddca8a02c1e32"
},
{
"category": "external",
"summary": "https://github.com/fonttools/fonttools/security/advisories/GHSA-768j-98cg-p3fv",
"url": "https://github.com/fonttools/fonttools/security/advisories/GHSA-768j-98cg-p3fv"
}
],
"release_date": "2025-11-29T01:07:12.193000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid processing untrusted .designspace files with the fontTools varLib script or any application that invokes fontTools.varLib.main(). Restrict the execution environment of processes handling .designspace files to minimize potential impact from arbitrary file writes. If the fonttools package is not required, consider removing it.",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fonttools: fontTools: Arbitrary file write leading to remote code execution via malicious .designspace file"
},
{
"cve": "CVE-2025-66418",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-12-05T17:01:20.277857+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419455"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in urllib3 Python library that could lead to a Denial of Service condition. A remote, malicious server can exploit this flaw by responding to a client request with an HTTP message that uses an excessive number of chained compression algorithms. This unlimited decompression chain causes the client system to consume a virtually unbounded amount of CPU resources and memory. The high resource usage leads to service disruption, making the application unresponsive.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66418"
},
{
"category": "external",
"summary": "RHBZ#2419455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419455"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66418",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66418"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66418",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66418"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/24d7b67eac89f94e11003424bcf0d8f7b72222a8",
"url": "https://github.com/urllib3/urllib3/commit/24d7b67eac89f94e11003424bcf0d8f7b72222a8"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-gm62-xv2j-4w53",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-gm62-xv2j-4w53"
}
],
"release_date": "2025-12-05T16:02:15.271000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion"
},
{
"cve": "CVE-2025-66471",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2025-12-05T17:02:21.597728+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419467"
}
],
"notes": [
{
"category": "description",
"text": "A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header (e.g., gzip, deflate, br, or zstd). The library must read compressed data from the network and decompress it until the requested chunk size is met. Any resulting decompressed data that exceeds the requested amount is held in an internal buffer for the next read operation. The decompression logic could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This can result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data; CWE-409) on the client side, even if the application only requested a small chunk of data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3 Streaming API improperly handles highly compressed data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66471"
},
{
"category": "external",
"summary": "RHBZ#2419467",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419467"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66471",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66471"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66471",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66471"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716ed7",
"url": "https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716ed7"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37"
}
],
"release_date": "2025-12-05T16:06:08.531000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3 Streaming API improperly handles highly compressed data"
},
{
"cve": "CVE-2025-66506",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-12-04T23:01:20.507333+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419056"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Fulcio, a free-to-use certificate authority. This vulnerability allows a denial of service (DoS) due to excessive memory allocation when processing a malicious OpenID Connect (OIDC) identity token containing numerous period characters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/sigstore/fulcio: Fulcio: Denial of Service via crafted OpenID Connect (OIDC) token",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat as Fulcio, a certificate authority used for issuing code signing certificates, is susceptible to a denial of service when processing a specially crafted OpenID Connect (OIDC) token. This could lead to resource exhaustion and service unavailability in affected Red Hat products that utilize Fulcio.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66506"
},
{
"category": "external",
"summary": "RHBZ#2419056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419056"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66506",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66506"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66506",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66506"
},
{
"category": "external",
"summary": "https://github.com/sigstore/fulcio/commit/765a0e57608b9ef390e1eeeea8595b9054c63a5a",
"url": "https://github.com/sigstore/fulcio/commit/765a0e57608b9ef390e1eeeea8595b9054c63a5a"
},
{
"category": "external",
"summary": "https://github.com/sigstore/fulcio/security/advisories/GHSA-f83f-xpx7-ffpw",
"url": "https://github.com/sigstore/fulcio/security/advisories/GHSA-f83f-xpx7-ffpw"
}
],
"release_date": "2025-12-04T22:04:41.637000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/sigstore/fulcio: Fulcio: Denial of Service via crafted OpenID Connect (OIDC) token"
},
{
"cve": "CVE-2025-66626",
"cwe": {
"id": "CWE-73",
"name": "External Control of File Name or Path"
},
"discovery_date": "2025-12-09T21:01:10.560389+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2420818"
}
],
"notes": [
{
"category": "description",
"text": "A path traversal and arbitrary file overwrite vulnerability has been identified in Argo Workflows during the extraction of archived artifacts, where symbolic links inside a crafted archive are not safely validated before file extraction. An attacker could exploit this flaw by submitting a malicious archive containing symbolic links that point outside the intended extraction directory, causing files to be written or overwritten in unintended locations within the workflow pod. Successful exploitation may allow an attacker to overwrite execution control files and achieve arbitrary command execution during pod startup.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/argoproj/argo-workflows: argoproj/argo-workflows is vulnerable to RCE via ZipSlip and symbolic links",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated this issue as High severity (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H, 8.3) because an attacker with basic workflow submission privileges can supply a specially crafted archive that is automatically extracted without proper validation. The attack complexity is low and does not require user interaction once the malicious workflow is submitted. Successful exploitation allows arbitrary file overwrite within the affected pod, including critical execution files, which can result in code execution at pod startup. While the impact is generally limited to the compromised pod and does not directly lead to host-level compromise, the integrity and availability impacts within the container are significant, justifying a High severity rating.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66626"
},
{
"category": "external",
"summary": "RHBZ#2420818",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2420818"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66626",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66626"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66626",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66626"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-p84v-gxvw-73pf",
"url": "https://github.com/advisories/GHSA-p84v-gxvw-73pf"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-workflows/blob/5291e0b01f94ba864f96f795bb500f2cfc5ad799/workflow/executor/executor.go#L1034-L1037",
"url": "https://github.com/argoproj/argo-workflows/blob/5291e0b01f94ba864f96f795bb500f2cfc5ad799/workflow/executor/executor.go#L1034-L1037"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-workflows/commit/6b92af23f35aed4d4de8b04adcaf19d68f006de1",
"url": "https://github.com/argoproj/argo-workflows/commit/6b92af23f35aed4d4de8b04adcaf19d68f006de1"
},
{
"category": "external",
"summary": "https://github.com/argoproj/argo-workflows/security/advisories/GHSA-xrqc-7xgx-c9vh",
"url": "https://github.com/argoproj/argo-workflows/security/advisories/GHSA-xrqc-7xgx-c9vh"
}
],
"release_date": "2025-12-09T20:19:14.680000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/argoproj/argo-workflows: argoproj/argo-workflows is vulnerable to RCE via ZipSlip and symbolic links"
},
{
"cve": "CVE-2025-68156",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-12-16T19:01:42.049157+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2422891"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Expr, an expression language and expression evaluation for Go. This vulnerability allows a denial of service (DoS) via recursive traversal over user-provided deeply nested or cyclic data structures without enforcing a maximum recursion depth, leading to a stack overflow panic and application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/expr-lang/expr: Expr: Denial of Service via uncontrolled recursion in expression evaluation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat products utilizing the `Expr` Go library because it can lead to a denial-of-service. Exploitation requires an application to evaluate expressions against untrusted or insufficiently validated data structures containing deeply nested or cyclic references, which can cause a stack overflow and application crash. Products that do not process untrusted input with `Expr` are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68156"
},
{
"category": "external",
"summary": "RHBZ#2422891",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2422891"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68156"
},
{
"category": "external",
"summary": "https://github.com/expr-lang/expr/pull/870",
"url": "https://github.com/expr-lang/expr/pull/870"
},
{
"category": "external",
"summary": "https://github.com/expr-lang/expr/security/advisories/GHSA-cfpf-hrx2-8rv6",
"url": "https://github.com/expr-lang/expr/security/advisories/GHSA-cfpf-hrx2-8rv6"
}
],
"release_date": "2025-12-16T18:24:11.648000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications using the `Expr` library should ensure that evaluation environments do not contain cyclic references. Additionally, externally supplied data structures must be validated or sanitized before being passed to `Expr` for evaluation. As a last-resort defensive measure, expression evaluation can be wrapped with panic recovery to prevent a full process crash.",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/expr-lang/expr: Expr: Denial of Service via uncontrolled recursion in expression evaluation"
},
{
"cve": "CVE-2025-68476",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-12-22T22:03:38.850390+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2424509"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in KEDA, a Kubernetes-based Event Driven Autoscaling component. This arbitrary file read vulnerability allows an attacker with permissions to create or modify a TriggerAuthentication resource to read any file from the node\u0027s filesystem where the KEDA pod resides. This is due to insufficient path validation when handling Service Account Tokens during HashiCorp Vault authentication. Successful exploitation can lead to the exfiltration of sensitive system information, such as secrets or configuration files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/kedacore/keda: KEDA: Arbitrary file read vulnerability in Vault authentication",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important because an attacker with permissions to create or modify a KEDA TriggerAuthentication resource can perform arbitrary file reads from the node\u0027s filesystem. This impacts Red Hat OpenShift products that utilize KEDA with HashiCorp Vault authentication.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68476"
},
{
"category": "external",
"summary": "RHBZ#2424509",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2424509"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68476",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68476"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68476",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68476"
},
{
"category": "external",
"summary": "https://github.com/kedacore/keda/commit/15c5677f65f809b9b6b59a52f4cf793db0a510fd",
"url": "https://github.com/kedacore/keda/commit/15c5677f65f809b9b6b59a52f4cf793db0a510fd"
},
{
"category": "external",
"summary": "https://github.com/kedacore/keda/security/advisories/GHSA-c4p6-qg4m-9jmr",
"url": "https://github.com/kedacore/keda/security/advisories/GHSA-c4p6-qg4m-9jmr"
}
],
"release_date": "2025-12-22T21:35:00.480000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/kedacore/keda: KEDA: Arbitrary file read vulnerability in Vault authentication"
},
{
"cve": "CVE-2025-69223",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-06T20:01:19.831548+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2427456"
}
],
"notes": [
{
"category": "description",
"text": "A decompression based denial of service flaw has been discovered in the AIOHTTP python library. Library versions 3.13.2 and below allow a zip bomb to be used to execute a DoS against the AIOHTTP server. An attacker may be able to send a compressed request that when decompressed by AIOHTTP could exhaust the host\u0027s memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "aiohttp: AIOHTTP\u0027s HTTP Parser auto_decompress feature is vulnerable to zip bomb",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-69223"
},
{
"category": "external",
"summary": "RHBZ#2427456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427456"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-69223",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69223"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-69223",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-69223"
},
{
"category": "external",
"summary": "https://github.com/aio-libs/aiohttp/commit/2b920c39002cee0ec5b402581779bbaaf7c9138a",
"url": "https://github.com/aio-libs/aiohttp/commit/2b920c39002cee0ec5b402581779bbaaf7c9138a"
},
{
"category": "external",
"summary": "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-6mq8-rvhq-8wgg",
"url": "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-6mq8-rvhq-8wgg"
}
],
"release_date": "2026-01-05T22:00:17.715000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "aiohttp: AIOHTTP\u0027s HTTP Parser auto_decompress feature is vulnerable to zip bomb"
},
{
"cve": "CVE-2026-21441",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2026-01-07T23:01:59.422078+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2427726"
}
],
"notes": [
{
"category": "description",
"text": "urllib3 is an HTTP client library for Python. urllib3\u0027s streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression based on the HTTP `Content-Encoding` header (e.g., `gzip`, `deflate`, `br`, or `zstd`). When using the streaming API, the library decompresses only the necessary bytes, enabling partial content consumption. Starting in version 1.22 and prior to version 2.6.3, for HTTP redirect responses, the library would read the entire response body to drain the connection and decompress the content unnecessarily. This decompression occurred even before any read methods were called, and configured read limits did not restrict the amount of decompressed data. As a result, there was no safeguard against decompression bombs. A malicious server could exploit this to trigger excessive resource consumption on the client. Applications and libraries are affected when they stream content from untrusted sources by setting `preload_content=False` when they do not disable redirects. Users should upgrade to at least urllib3 v2.6.3, in which the library does not decode content of redirect responses when `preload_content=False`. If upgrading is not immediately possible, disable redirects by setting `redirect=False` for requests to untrusted source.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-21441"
},
{
"category": "external",
"summary": "RHBZ#2427726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-21441",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21441"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-21441",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-21441"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/8864ac407bba8607950025e0979c4c69bc7abc7b",
"url": "https://github.com/urllib3/urllib3/commit/8864ac407bba8607950025e0979c4c69bc7abc7b"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-38jv-5279-wg99",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-38jv-5279-wg99"
}
],
"release_date": "2026-01-07T22:09:01.936000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)"
},
{
"cve": "CVE-2026-24049",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2026-01-22T05:00:54.709179+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2431959"
}
],
"notes": [
{
"category": "description",
"text": "A path traversal flaw has been discovered in the python wheel too. The unpack function is vulnerable to file permission modification through mishandling of file permissions after extraction. The logic blindly trusts the filename from the archive header for the chmod operation, even though the extraction process itself might have sanitized the path. Attackers can craft a malicious wheel file that, when unpacked, changes the permissions of critical system files (e.g., /etc/passwd, SSH keys, config files), allowing for Privilege Escalation or arbitrary code execution by modifying now-writable scripts.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "wheel: wheel: Privilege Escalation or Arbitrary Code Execution via malicious wheel file unpacking",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-24049"
},
{
"category": "external",
"summary": "RHBZ#2431959",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431959"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-24049",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-24049"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-24049",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24049"
},
{
"category": "external",
"summary": "https://github.com/pypa/wheel/commit/7a7d2de96b22a9adf9208afcc9547e1001569fef",
"url": "https://github.com/pypa/wheel/commit/7a7d2de96b22a9adf9208afcc9547e1001569fef"
},
{
"category": "external",
"summary": "https://github.com/pypa/wheel/releases/tag/0.46.2",
"url": "https://github.com/pypa/wheel/releases/tag/0.46.2"
},
{
"category": "external",
"summary": "https://github.com/pypa/wheel/security/advisories/GHSA-8rrh-rw8j-w5fx",
"url": "https://github.com/pypa/wheel/security/advisories/GHSA-8rrh-rw8j-w5fx"
}
],
"release_date": "2026-01-22T04:02:08.706000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-12T22:43:13+00:00",
"details": "For Red Hat OpenShift AI 2.25.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:2695"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:2c98b3b933276dbcead1fde142bfcd3f130d89e6812c6b433da7eed650ae2dbc_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-codeflare-operator-rhel9@sha256:53c79641084ebe6c98274b31e34cc1a759b1443b96cf7dc45317008a30b1fc8d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4333242b1f6f25f8656bd612870d02868f3724d80cf542c8d78ada49a8ad9cb2_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:4519eccf48b1f2393bab39980fadde7e398cfff1933b78e9565029f95296ff05_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:a15b54532e9e06d91abce8fd7becf2aa3bfbce56f231036e25e9ffed15760f74_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:ce1e29736422aa55f1a3837fc38a365fbc1096d58b6794cca84ff907da273917_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:42f631d436d62d7399ca3ef8fd89a334c7839823c8e6ffafe2cdd32ee36493bb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:56615395c62e26f3ef9bd267c0d5245331b8c67508df4bd8bbc83d72c4ef3b99_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel9@sha256:84a87320bee17439c05d2c6a1edf3b7e83b2f7ebfdd850399d12635e58da4d55_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:04a821296c01da5155ab36d9381b962866c26e9c7516f321ffe440b7fa13b4c5_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:33aaad4cc22d1e2998e4710cc644f4032bec8f140e5236fdc83d520a869626ef_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9@sha256:d2cb739f949dc4ec9617bb9470a8482a8011077043e06e735ab0c9d7d1cac381_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:12d3d74ffbd7eb3a4817952835ab9bf5b89edf4fc9af661a28ec009f3251a519_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:1fb43684436f6b55152aab553177df048d5bb267c5efbc61f0f27cdbb0848957_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel9@sha256:c51fe06b557fa20d78af7b12cf6c6ddc3227f44f3957a52f3037c25700cfadb2_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:1e1d5fad0aecf93b79b21112360aa0c308654c5b5df829cd3144488f8e217af4_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:72f613c382aac012e2e79e800df50c210f41693cc2aaa5b99cb28ab38f1966c8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:7f027d05df255e62828ab28d5f188655fc125bc4ead872c7a33cedaf47b12f8c_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel9@sha256:cf586b7cb58dff92e7f31b8b9ebe5c971e55c67b8ba2c3320d2b71183c88fc7c_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:2df297674884e6ac297bae685f80741489ddf1e1d0ae1d5ec354917dff1acdda_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel9@sha256:7af31fef4a2269c2cf444420048ea644c9949714e9a63417fe6d7288abee457b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:3ca10a19a0706af65bb590403adad92114810bf0ac64a89d6ac1d862e4cec671_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:56a321957afd15d357c8b53fc50299c0811981e8b925e64858dc7c4cfcea1993_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:633bfd24f1396c150b5902407879e7b26e7681074772fbbfeccc4d48cbe77b19_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-kueue-controller-rhel9@sha256:ff09ee957797fa15208f9130e246ae006c385cc799573a71d31aff9ddf0e805d_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:1d258fe98c2477e4256a9b936f412f2501fb7ca9e3b810347f9712e0d5ce5c92_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-llama-stack-k8s-operator-rhel9@sha256:e8ccea3bfafbde4d5b91cc7b7732b2b64d6aa08499b5ca63b4d8f1e980291351_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:5bd1065dca1978c49c0143e2be4e921465c6a67fa786ab2a9254f0790259096e_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:8b34aaf5a7729ef1ccd01f2b1b1e3439b304343f3403de67f68255015206fbf4_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel9@sha256:ade80e2ecb6fa56c20539e11677c29e57a1e20b5ce60f8414fd8ff3e83c9bc28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:3439c67a60c8323eb88f0181e8f811e5bdd7b51169f8b8cc687ab2148d1bfabe_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:820fd80dbce2d9d9cdf38989ce84ee5601e862786a732ad108fc319e28131944_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel9@sha256:d9a6959a71074ffc5ec0fa324af389fbd8277efbd22a827cef8a439b18cd2bcf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:8e9dbdc213745aa0990f47e50b1d899ac2121951b9346420131d76cc393a493a_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:95ca9b1ecee8f11d6edabd7af76f60d2987df91d11fd0fb4c6578df735717422_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel9@sha256:f01860f904557f887d8aafe42143c63352d6cb496dc727c265f14e3c2d296e06_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:1c76d957c8588ea2987d4b551bbefc2ef07c546cbaeb3148caff06f640b35ade_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:68e9797f37f8e4de817ee4e1cba7d583b541db2373c5d250ccc3344820720b85_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9@sha256:7f362050312693129d3a15b6eed4fa06576d6529a99bc864f273c55145ae14ec_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:114fd9b55f5ea28a16c3fe2eef773a4cb4693c1885ef6193399cfea278191acb_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:6490c1848b373efe6c327f8959e06b66b1ac3fe0f90fa697f7309d9f48c66765_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel9@sha256:816d8f81196bb0acfe5bbc792f9768916724bdecea3671172412eeb6948c4ff7_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:1e66abc3373c50b5ef69b0c63bf877a978e3aa0a368630973cf0a2be7374becf_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:9c061b939c8094f4939cd183da381ad8e49d878cc2fdd373b8d26eecae07ab6d_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9@sha256:f0511f3768e51b6801b66c91b302010e6197facb71a0b7777c4d3ad3039b6c88_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:3e70ae3e8b5f776ad3e2a184a1f2f572de5c46386f34edb99e2b9d1d9249ae41_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:5924a7e64d6031aa926f9ecb9ee3be30d8251c4705813a9bef6716d18b7411b4_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel9@sha256:f441a07265d87fb59ee375723e98fbc9af5f3fd5a2c09761692b0e271205f0bb_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:af7bbec8e30b0e0d8393fe1e2bd656d7630b7c9828536be6664fa848fac61505_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel9@sha256:cf4e879101bc4e3666649dda0926de8bbd95e641dc6832c29dc457128256eb6c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:331f8435e1bd3dec98947a24346873d09056e37e2d7ed83a463098dbf9f31a47_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:5e83e352d083892699338da3fa4c9b8218561e7167b4dff102d22e401cbc7f75_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:86ca44b014be65651b83a49a38c0784dee640b491b935e3ed5f3d49d84d55362_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-mod-arch-model-registry-rhel9@sha256:f9ee33c1c4d7f2a872861c9ad1dbb78ba8fed3ab562ae90f12f06a892147e367_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:0ea603487b204f43ebddb1514500cdeaa02a0b763a627e4e10979deec60b7d28_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:29ff94de29714044377d060db9ad47f151afec858c8fc127c94ff04adbb984b7_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:2b6c00ee23df974d22c185b592ef4d7babbb76bcadc129a04c869f9983630103_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-controller-rhel9@sha256:e7c4da685e08c79d5b49e9f12ff5efa7cc7d9e26a03c91ab19f86c99e9f4ac23_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:25077a998c7b6ec7e8122026f2152419a0efe293a00899bb745a66a57f913848_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:5178d3800d74d84a6282a7ddc888eea9b81d62c8a385ad57bb742fa28fb0f575_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:9070f6741e667a4a145ede8dc67d4f7545944ef5fe4937fdcb1a08e9f537e068_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-job-async-upload-rhel9@sha256:a7efdef6ef06af0aa97de86ebd0c0ccfc316719195289dfa835261da53b06589_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:2dd15cd61e1e5d98791a68bb513572b82ce5d799dd3fa864d43a8134536b19ff_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:37938821d832d7b957aa6f9b4a468c0eed785625c2bb8257726b4dc094bab9bd_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:e94a31493c7207846ab5d13387311e9a6d99ffa7885d1b8faa8602750059c2a3_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-operator-rhel9@sha256:eb0500f30373c5bcf3e10e27b081f97e5ce8b29a71dde9ff9b7e1066fd5dd80e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:22c745e5d04f7a0d9b188bf6657b1de053c61d99d813f11f6819550ef2a96732_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:49495dd44b7956a5e1bed226a896be649a07cd1b1f915de31d39041a77f6cdb5_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:741b836350d9ec48109468382c81066f401ebb4712ca414d44e3042894111419_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-model-registry-rhel9@sha256:9cf7f5bdebf6b53fce9cfed4fe530c380f36bb1d60120b53c06043371863d4e6_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:3dd54b885e3d63e5882284bf4878aa723c1fef6833601ed5d5a091b6b74c68d1_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:83f773633a864b707c7e371bd554f79622b999a1ecef4b1cd368e0dd72b7a9ad_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:4a356900b1daca75092b8eac5c1d16f38703941caebba5ddec48120e854bd7e9_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel9@sha256:a26699523e44b43a0f237ee664b3574cbea8d11576bd4bc884c3766c0effb8df_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:1a85e42e32534b58410c519b4d8f7d84fe6ff96567612f18f4bd558fa3c895a6_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel9@sha256:ef72689e332c4e224a80603ffbcc1603cdf8fe4230b9fd60e7713f0b5c2d5045_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:1c15c95b65bfbcc620d4d429431eabca8f4714d32a38aa68cb15c549e1a6ce4c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:659acd52802b6f2300c223bcde827f1d9b80ac9a93fdb6f574fcb5a08b92607c_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:6f44d3b3973c34677d347a67841dbfabd23817de1b5c26967f1b9952c27b48c8_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-notebook-controller-rhel9@sha256:b84eb1329e837895ca50d3284553e195918fefc71bdb9dc2550a90b2d927b6eb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-openvino-model-server-rhel9@sha256:84739168d6ea2813c5b9666773166649a6b328a279dac80b61c51311a6a2943a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-operator-bundle@sha256:74968eea50e067a335e830cfde6d8bf3cd130a9eba77ce918e25e252b7c1541e_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:53a8389250e59e7c9f5a9a61914cac361946b256132649bd45f775c8f36b486a_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:890b0e4467cdfd68985af367a6d015ff7e92a2b6a1f46e2c2bf233c3d621f1a8_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:9f667eb88f5b085ec40b8b06e5f42cf6a0ced0913d7d2b0402cd0472eb4b428c_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:eedab7e6fd4adb2bd697e8cbcbd6703291d9fe5d2a3a048e8c34d9529586c93a_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:12ac94419811458fb309d417091e279d485c4a665899d3a7d3157b8b32c1b03d_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:4318d360c3a968ee79ef68979105ee5ffb93137757a3b4a6c42c15e6cf6b11ba_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-training-operator-rhel9@sha256:ba6188d3d284f030f90e117c87501a8d08c4b356383429ad39806472113aa41b_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:05c7ffbd4dfa1f6ef760ed86f142d84d4c42583fa0b747eedc234763bef74ebb_s390x",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:883f4ae255413c1409d3fb607f91fdf13badf534c5e8f78d9905c8da69cdeeed_amd64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:b7f375f2f1f4eb828ee8255143143385c4662aab967c007a89954903c8a7c27f_arm64",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-trustyai-service-rhel9@sha256:d29d106e6c0f6a3ae971903a16cf4a564950bcf5336219eb6665cae98b824d33_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:5a2db37676e0f0b05fe2a8c5f82bb489ff3c8dd80f94b9fb3540488ab39ff6ca_ppc64le",
"Red Hat OpenShift AI 2.25:registry.redhat.io/rhoai/odh-vllm-cpu-rhel9@sha256:bab28cfa3596192875dbf305a4ed7432db0ebebec604053d30895931818740cd_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "wheel: wheel: Privilege Escalation or Arbitrary Code Execution via malicious wheel file unpacking"
}
]
}
RHSA-2026:3391
Vulnerability from csaf_redhat - Published: 2026-03-04 15:54 - Updated: 2026-05-07 07:29Summary
Red Hat Security Advisory: OpenShift Container Platform 4.19.25 packages and security update
Severity
Important
Notes
Topic: Red Hat OpenShift Container Platform release 4.19.25 is now available with
updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container
Platform 4.19.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details: Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container
Platform 4.19.25. See the following advisory for the container images for
this release:
https://access.redhat.com/errata/RHBA-2026:3394
Security Fix(es):
* runc: opencontainers/selinux: container escape and denial of service due
to arbitrary write gadgets and procfs write redirects (CVE-2025-52881)
* golang: net/url: Memory exhaustion in query parameter parsing in net/url
(CVE-2025-61726)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
All OpenShift Container Platform 4.19 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel. To check for available updates, use the OpenShift CLI (oc)
or web console. Instructions for upgrading a cluster are available at
https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.
8.2 (High)
Vendor Fix
For OpenShift Container Platform 4.19 see the following documentation,
which will be updated shortly for this release, for important instructions
on how to upgrade your cluster and fully apply this asynchronous errata
update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/
https://access.redhat.com/errata/RHSA-2026:3391
Workaround
Potential mitigations for this issue include:
* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).
* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.
A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
7.5 (High)
Vendor Fix
For OpenShift Container Platform 4.19 see the following documentation,
which will be updated shortly for this release, for important instructions
on how to upgrade your cluster and fully apply this asynchronous errata
update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/
https://access.redhat.com/errata/RHSA-2026:3391
Workaround
Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.19.25 is now available with\nupdates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container\nPlatform 4.19.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container\nPlatform 4.19.25. See the following advisory for the container images for\nthis release:\n\nhttps://access.redhat.com/errata/RHBA-2026:3394\n\nSecurity Fix(es):\n\n* runc: opencontainers/selinux: container escape and denial of service due\nto arbitrary write gadgets and procfs write redirects (CVE-2025-52881)\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url\n(CVE-2025-61726)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section.\n\nAll OpenShift Container Platform 4.19 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:3391",
"url": "https://access.redhat.com/errata/RHSA-2026:3391"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2404715",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404715"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_3391.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.19.25 packages and security update",
"tracking": {
"current_release_date": "2026-05-07T07:29:57+00:00",
"generator": {
"date": "2026-05-07T07:29:57+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2026:3391",
"initial_release_date": "2026-03-04T15:54:04+00:00",
"revision_history": [
{
"date": "2026-03-04T15:54:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-04T15:54:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-07T07:29:57+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.19",
"product": {
"name": "Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.19::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.19",
"product": {
"name": "Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.19::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "butane-0:0.24.0-4.rhaos4.19.el8.src",
"product": {
"name": "butane-0:0.24.0-4.rhaos4.19.el8.src",
"product_id": "butane-0:0.24.0-4.rhaos4.19.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane@0.24.0-4.rhaos4.19.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src",
"product": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src",
"product_id": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.19.0-202602241905.p2.g24755b6.assembly.stream.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.src",
"product": {
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.src",
"product_id": "buildah-2:1.33.12-4.rhaos4.19.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.33.12-4.rhaos4.19.el9?arch=src\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.src",
"product": {
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.src",
"product_id": "conmon-3:2.1.12-11.rhaos4.19.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon@2.1.12-11.rhaos4.19.el9?arch=src\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src",
"product": {
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src",
"product_id": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=src"
}
}
},
{
"category": "product_version",
"name": "cri-tools-0:1.32.0-4.el9.src",
"product": {
"name": "cri-tools-0:1.32.0-4.el9.src",
"product_id": "cri-tools-0:1.32.0-4.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools@1.32.0-4.el9?arch=src"
}
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src",
"product": {
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src",
"product_id": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-prometheus-promu@0.16.0-22.gitf6c51c9.el9?arch=src"
}
}
},
{
"category": "product_version",
"name": "kernel-0:5.14.0-570.94.1.el9_6.src",
"product": {
"name": "kernel-0:5.14.0-570.94.1.el9_6.src",
"product_id": "kernel-0:5.14.0-570.94.1.el9_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@5.14.0-570.94.1.el9_6?arch=src"
}
}
},
{
"category": "product_version",
"name": "openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src",
"product": {
"name": "openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src",
"product_id": "openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=src"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src",
"product": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src",
"product_id": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.19.0-202602241905.p2.g24755b6.assembly.stream.el9?arch=src"
}
}
},
{
"category": "product_version",
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src",
"product": {
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src",
"product_id": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9?arch=src"
}
}
},
{
"category": "product_version",
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src",
"product": {
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src",
"product_id": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-azure-acr-image-credential-provider@4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9?arch=src"
}
}
},
{
"category": "product_version",
"name": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src",
"product": {
"name": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src",
"product_id": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-gcp-gcr-image-credential-provider@4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9?arch=src"
}
}
},
{
"category": "product_version",
"name": "runc-4:1.2.5-4.rhaos4.19.el9.src",
"product": {
"name": "runc-4:1.2.5-4.rhaos4.19.el9.src",
"product_id": "runc-4:1.2.5-4.rhaos4.19.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.5-4.rhaos4.19.el9?arch=src\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.src",
"product": {
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.src",
"product_id": "skopeo-2:1.18.1-4.rhaos4.19.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.18.1-4.rhaos4.19.el9?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "butane-0:0.24.0-4.rhaos4.19.el8.x86_64",
"product": {
"name": "butane-0:0.24.0-4.rhaos4.19.el8.x86_64",
"product_id": "butane-0:0.24.0-4.rhaos4.19.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane@0.24.0-4.rhaos4.19.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64",
"product": {
"name": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64",
"product_id": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane-debugsource@0.24.0-4.rhaos4.19.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64",
"product": {
"name": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64",
"product_id": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane-debuginfo@0.24.0-4.rhaos4.19.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"product": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"product_id": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.19.0-202602241905.p2.g24755b6.assembly.stream.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"product": {
"name": "openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"product_id": "openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.19.0-202602241905.p2.g24755b6.assembly.stream.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product": {
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product_id": "buildah-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.33.12-4.rhaos4.19.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product": {
"name": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product_id": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.33.12-4.rhaos4.19.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product": {
"name": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product_id": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.33.12-4.rhaos4.19.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product": {
"name": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product_id": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.33.12-4.rhaos4.19.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product": {
"name": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product_id": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.33.12-4.rhaos4.19.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.x86_64",
"product": {
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.x86_64",
"product_id": "conmon-3:2.1.12-11.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon@2.1.12-11.rhaos4.19.el9?arch=x86_64\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64",
"product": {
"name": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64",
"product_id": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon-debugsource@2.1.12-11.rhaos4.19.el9?arch=x86_64\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64",
"product": {
"name": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64",
"product_id": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon-debuginfo@2.1.12-11.rhaos4.19.el9?arch=x86_64\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"product": {
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"product_id": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"product": {
"name": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"product_id": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o-debugsource@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"product": {
"name": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"product_id": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o-debuginfo@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cri-tools-0:1.32.0-4.el9.x86_64",
"product": {
"name": "cri-tools-0:1.32.0-4.el9.x86_64",
"product_id": "cri-tools-0:1.32.0-4.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools@1.32.0-4.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cri-tools-debugsource-0:1.32.0-4.el9.x86_64",
"product": {
"name": "cri-tools-debugsource-0:1.32.0-4.el9.x86_64",
"product_id": "cri-tools-debugsource-0:1.32.0-4.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools-debugsource@1.32.0-4.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cri-tools-debuginfo-0:1.32.0-4.el9.x86_64",
"product": {
"name": "cri-tools-debuginfo-0:1.32.0-4.el9.x86_64",
"product_id": "cri-tools-debuginfo-0:1.32.0-4.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools-debuginfo@1.32.0-4.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"product": {
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"product_id": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-prometheus-promu@0.16.0-22.gitf6c51c9.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"product": {
"name": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"product_id": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-prometheus-promu@0.16.0-22.gitf6c51c9.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel-matched@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-core@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-internal@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-partner@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-uki-virt@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-uki-virt-addons@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel-matched@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-ipaclones-internal@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-core@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-internal@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-partner@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-core@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-core@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel-matched@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-kvm@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-core@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-extra@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-internal@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-partner@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel-matched@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-kvm@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-core@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-extra@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-internal@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-partner@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-selftests-internal@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-uki-virt@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-uki-virt-addons@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libperf-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "libperf-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "libperf-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libperf@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libperf-devel@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "perf-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "perf-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "python3-perf-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "python3-perf-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rtla-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "rtla-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "rtla-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rtla@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "rv-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "rv-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "rv-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rv@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libperf-debuginfo@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product": {
"name": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_id": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@5.14.0-570.94.1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product": {
"name": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product_id": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-hyperkube@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product": {
"name": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product_id": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kube-apiserver@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product": {
"name": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product_id": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kube-controller-manager@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product": {
"name": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product_id": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kube-scheduler@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product": {
"name": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product_id": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kubelet@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"product": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"product_id": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.19.0-202602241905.p2.g24755b6.assembly.stream.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"product": {
"name": "openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"product_id": "openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.19.0-202602241905.p2.g24755b6.assembly.stream.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64",
"product": {
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64",
"product_id": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64",
"product": {
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64",
"product_id": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-azure-acr-image-credential-provider@4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64",
"product": {
"name": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64",
"product_id": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-gcp-gcr-image-credential-provider@4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "runc-4:1.2.5-4.rhaos4.19.el9.x86_64",
"product": {
"name": "runc-4:1.2.5-4.rhaos4.19.el9.x86_64",
"product_id": "runc-4:1.2.5-4.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.5-4.rhaos4.19.el9?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64",
"product": {
"name": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64",
"product_id": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.5-4.rhaos4.19.el9?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64",
"product": {
"name": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64",
"product_id": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.5-4.rhaos4.19.el9?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"product": {
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"product_id": "skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.18.1-4.rhaos4.19.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64",
"product": {
"name": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64",
"product_id": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.18.1-4.rhaos4.19.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64",
"product": {
"name": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64",
"product_id": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.18.1-4.rhaos4.19.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"product": {
"name": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"product_id": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.18.1-4.rhaos4.19.el9?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "butane-0:0.24.0-4.rhaos4.19.el8.aarch64",
"product": {
"name": "butane-0:0.24.0-4.rhaos4.19.el8.aarch64",
"product_id": "butane-0:0.24.0-4.rhaos4.19.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane@0.24.0-4.rhaos4.19.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64",
"product": {
"name": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64",
"product_id": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane-debugsource@0.24.0-4.rhaos4.19.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64",
"product": {
"name": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64",
"product_id": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane-debuginfo@0.24.0-4.rhaos4.19.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64",
"product": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64",
"product_id": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.19.0-202602241905.p2.g24755b6.assembly.stream.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product": {
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product_id": "buildah-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.33.12-4.rhaos4.19.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product": {
"name": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product_id": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.33.12-4.rhaos4.19.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product": {
"name": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product_id": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.33.12-4.rhaos4.19.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product": {
"name": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product_id": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.33.12-4.rhaos4.19.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product": {
"name": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product_id": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.33.12-4.rhaos4.19.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.aarch64",
"product": {
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.aarch64",
"product_id": "conmon-3:2.1.12-11.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon@2.1.12-11.rhaos4.19.el9?arch=aarch64\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64",
"product": {
"name": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64",
"product_id": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon-debugsource@2.1.12-11.rhaos4.19.el9?arch=aarch64\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64",
"product": {
"name": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64",
"product_id": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon-debuginfo@2.1.12-11.rhaos4.19.el9?arch=aarch64\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"product": {
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"product_id": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"product": {
"name": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"product_id": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o-debugsource@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"product": {
"name": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"product_id": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o-debuginfo@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "cri-tools-0:1.32.0-4.el9.aarch64",
"product": {
"name": "cri-tools-0:1.32.0-4.el9.aarch64",
"product_id": "cri-tools-0:1.32.0-4.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools@1.32.0-4.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "cri-tools-debugsource-0:1.32.0-4.el9.aarch64",
"product": {
"name": "cri-tools-debugsource-0:1.32.0-4.el9.aarch64",
"product_id": "cri-tools-debugsource-0:1.32.0-4.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools-debugsource@1.32.0-4.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "cri-tools-debuginfo-0:1.32.0-4.el9.aarch64",
"product": {
"name": "cri-tools-debuginfo-0:1.32.0-4.el9.aarch64",
"product_id": "cri-tools-debuginfo-0:1.32.0-4.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools-debuginfo@1.32.0-4.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"product": {
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"product_id": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-prometheus-promu@0.16.0-22.gitf6c51c9.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"product": {
"name": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"product_id": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-prometheus-promu@0.16.0-22.gitf6c51c9.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-devel@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-devel-matched@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-modules@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-modules-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-modules-extra@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-modules-internal@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-modules-partner@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-devel@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-devel-matched@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-modules@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-modules-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-modules-extra@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-modules-internal@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-modules-partner@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel-matched@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-internal@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-partner@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel-matched@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-internal@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-partner@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-debug@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-debug-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-debug-devel@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-debug-devel-matched@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-debug-kvm@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-debug-modules@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-debug-modules-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-debug-modules-extra@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-debug-modules-internal@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-debug-modules-partner@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-devel@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-devel-matched@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-kvm@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-modules@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-modules-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-modules-extra@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-modules-internal@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-modules-partner@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel-matched@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-kvm@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-extra@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-internal@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-partner@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel-matched@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-kvm@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-core@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-extra@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-internal@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-partner@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-selftests-internal@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libperf-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "libperf-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "libperf-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libperf@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libperf-devel@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "perf-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "perf-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "python3-perf-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "python3-perf-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "rtla-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "rtla-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "rtla-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rtla@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "rv-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "rv-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "rv-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rv@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debug-debuginfo@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-64k-debuginfo@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-aarch64@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-debug-debuginfo@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-64k-debuginfo@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libperf-debuginfo@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product": {
"name": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_id": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@5.14.0-570.94.1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product": {
"name": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product_id": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-hyperkube@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product": {
"name": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product_id": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kube-apiserver@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product": {
"name": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product_id": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kube-controller-manager@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product": {
"name": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product_id": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kube-scheduler@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product": {
"name": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product_id": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kubelet@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64",
"product": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64",
"product_id": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.19.0-202602241905.p2.g24755b6.assembly.stream.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64",
"product": {
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64",
"product_id": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64",
"product": {
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64",
"product_id": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-azure-acr-image-credential-provider@4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "runc-4:1.2.5-4.rhaos4.19.el9.aarch64",
"product": {
"name": "runc-4:1.2.5-4.rhaos4.19.el9.aarch64",
"product_id": "runc-4:1.2.5-4.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.5-4.rhaos4.19.el9?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64",
"product": {
"name": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64",
"product_id": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.5-4.rhaos4.19.el9?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64",
"product": {
"name": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64",
"product_id": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.5-4.rhaos4.19.el9?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"product": {
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"product_id": "skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.18.1-4.rhaos4.19.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64",
"product": {
"name": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64",
"product_id": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.18.1-4.rhaos4.19.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64",
"product": {
"name": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64",
"product_id": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.18.1-4.rhaos4.19.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"product": {
"name": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"product_id": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.18.1-4.rhaos4.19.el9?arch=aarch64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "butane-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"product": {
"name": "butane-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"product_id": "butane-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane@0.24.0-4.rhaos4.19.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"product": {
"name": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"product_id": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane-debugsource@0.24.0-4.rhaos4.19.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"product": {
"name": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"product_id": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane-debuginfo@0.24.0-4.rhaos4.19.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le",
"product": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le",
"product_id": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.19.0-202602241905.p2.g24755b6.assembly.stream.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product": {
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product_id": "buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.33.12-4.rhaos4.19.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product": {
"name": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product_id": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.33.12-4.rhaos4.19.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product": {
"name": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product_id": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.33.12-4.rhaos4.19.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product": {
"name": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product_id": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.33.12-4.rhaos4.19.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product": {
"name": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product_id": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.33.12-4.rhaos4.19.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"product": {
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"product_id": "conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon@2.1.12-11.rhaos4.19.el9?arch=ppc64le\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"product": {
"name": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"product_id": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon-debugsource@2.1.12-11.rhaos4.19.el9?arch=ppc64le\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"product": {
"name": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"product_id": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon-debuginfo@2.1.12-11.rhaos4.19.el9?arch=ppc64le\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"product": {
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"product_id": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"product": {
"name": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"product_id": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o-debugsource@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"product": {
"name": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"product_id": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o-debuginfo@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "cri-tools-0:1.32.0-4.el9.ppc64le",
"product": {
"name": "cri-tools-0:1.32.0-4.el9.ppc64le",
"product_id": "cri-tools-0:1.32.0-4.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools@1.32.0-4.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "cri-tools-debugsource-0:1.32.0-4.el9.ppc64le",
"product": {
"name": "cri-tools-debugsource-0:1.32.0-4.el9.ppc64le",
"product_id": "cri-tools-debugsource-0:1.32.0-4.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools-debugsource@1.32.0-4.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le",
"product": {
"name": "cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le",
"product_id": "cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools-debuginfo@1.32.0-4.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"product": {
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"product_id": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-prometheus-promu@0.16.0-22.gitf6c51c9.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"product": {
"name": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"product_id": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-prometheus-promu@0.16.0-22.gitf6c51c9.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel-matched@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-core@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-internal@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-partner@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel-matched@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-ipaclones-internal@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-core@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-internal@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-partner@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-selftests-internal@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libperf-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "libperf-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "libperf-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libperf@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libperf-devel@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "rtla-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "rtla-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "rtla-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rtla@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "rv-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "rv-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "rv-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rv@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64le@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libperf-debuginfo@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product": {
"name": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_id": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@5.14.0-570.94.1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product": {
"name": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product_id": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-hyperkube@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product": {
"name": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product_id": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kube-apiserver@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product": {
"name": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product_id": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kube-controller-manager@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product": {
"name": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product_id": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kube-scheduler@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product": {
"name": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product_id": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kubelet@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le",
"product": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le",
"product_id": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.19.0-202602241905.p2.g24755b6.assembly.stream.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le",
"product": {
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le",
"product_id": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le",
"product": {
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le",
"product_id": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-azure-acr-image-credential-provider@4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le",
"product": {
"name": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le",
"product_id": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-gcp-gcr-image-credential-provider@4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "runc-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"product": {
"name": "runc-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"product_id": "runc-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.5-4.rhaos4.19.el9?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"product": {
"name": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"product_id": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.5-4.rhaos4.19.el9?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"product": {
"name": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"product_id": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.5-4.rhaos4.19.el9?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"product": {
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"product_id": "skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.18.1-4.rhaos4.19.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"product": {
"name": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"product_id": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.18.1-4.rhaos4.19.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"product": {
"name": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"product_id": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.18.1-4.rhaos4.19.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"product": {
"name": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"product_id": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.18.1-4.rhaos4.19.el9?arch=ppc64le\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "butane-0:0.24.0-4.rhaos4.19.el8.s390x",
"product": {
"name": "butane-0:0.24.0-4.rhaos4.19.el8.s390x",
"product_id": "butane-0:0.24.0-4.rhaos4.19.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane@0.24.0-4.rhaos4.19.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x",
"product": {
"name": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x",
"product_id": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane-debugsource@0.24.0-4.rhaos4.19.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x",
"product": {
"name": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x",
"product_id": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane-debuginfo@0.24.0-4.rhaos4.19.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x",
"product": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x",
"product_id": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.19.0-202602241905.p2.g24755b6.assembly.stream.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.s390x",
"product": {
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.s390x",
"product_id": "buildah-2:1.33.12-4.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.33.12-4.rhaos4.19.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x",
"product": {
"name": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x",
"product_id": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.33.12-4.rhaos4.19.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x",
"product": {
"name": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x",
"product_id": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.33.12-4.rhaos4.19.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"product": {
"name": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"product_id": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.33.12-4.rhaos4.19.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"product": {
"name": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"product_id": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.33.12-4.rhaos4.19.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.s390x",
"product": {
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.s390x",
"product_id": "conmon-3:2.1.12-11.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon@2.1.12-11.rhaos4.19.el9?arch=s390x\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x",
"product": {
"name": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x",
"product_id": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon-debugsource@2.1.12-11.rhaos4.19.el9?arch=s390x\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x",
"product": {
"name": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x",
"product_id": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/conmon-debuginfo@2.1.12-11.rhaos4.19.el9?arch=s390x\u0026epoch=3"
}
}
},
{
"category": "product_version",
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"product": {
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"product_id": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"product": {
"name": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"product_id": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o-debugsource@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"product": {
"name": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"product_id": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-o-debuginfo@1.32.13-5.rhaos4.19.gitcd42990.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "cri-tools-0:1.32.0-4.el9.s390x",
"product": {
"name": "cri-tools-0:1.32.0-4.el9.s390x",
"product_id": "cri-tools-0:1.32.0-4.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools@1.32.0-4.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "cri-tools-debugsource-0:1.32.0-4.el9.s390x",
"product": {
"name": "cri-tools-debugsource-0:1.32.0-4.el9.s390x",
"product_id": "cri-tools-debugsource-0:1.32.0-4.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools-debugsource@1.32.0-4.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "cri-tools-debuginfo-0:1.32.0-4.el9.s390x",
"product": {
"name": "cri-tools-debuginfo-0:1.32.0-4.el9.s390x",
"product_id": "cri-tools-debuginfo-0:1.32.0-4.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools-debuginfo@1.32.0-4.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"product": {
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"product_id": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-prometheus-promu@0.16.0-22.gitf6c51c9.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"product": {
"name": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"product_id": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-prometheus-promu@0.16.0-22.gitf6c51c9.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-core-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-core-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-debug-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-debug-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel-matched@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-core@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-internal@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-partner@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-devel-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-devel-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel-matched@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-modules-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-modules-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-core@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-internal@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-partner@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-selftests-internal@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-tools-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-tools-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-core@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-devel@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-devel-matched@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules-core@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules-extra@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules-internal@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules-partner@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libperf-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "libperf-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "libperf-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libperf@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libperf-devel-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "libperf-devel-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "libperf-devel-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libperf-devel@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "perf-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "perf-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "perf-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "python3-perf-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "python3-perf-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "rtla-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "rtla-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "rtla-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rtla@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "rv-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "rv-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "rv-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rv@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-debuginfo@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libperf-debuginfo@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product": {
"name": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_id": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@5.14.0-570.94.1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product": {
"name": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product_id": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-hyperkube@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product": {
"name": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product_id": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kube-apiserver@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product": {
"name": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product_id": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kube-controller-manager@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product": {
"name": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product_id": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kube-scheduler@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product": {
"name": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product_id": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kubelet@4.19.0-202602241905.p2.g346896b.assembly.stream.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x",
"product": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x",
"product_id": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.19.0-202602241905.p2.g24755b6.assembly.stream.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x",
"product": {
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x",
"product_id": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x",
"product": {
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x",
"product_id": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-azure-acr-image-credential-provider@4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x",
"product": {
"name": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x",
"product_id": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ose-gcp-gcr-image-credential-provider@4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "runc-4:1.2.5-4.rhaos4.19.el9.s390x",
"product": {
"name": "runc-4:1.2.5-4.rhaos4.19.el9.s390x",
"product_id": "runc-4:1.2.5-4.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.5-4.rhaos4.19.el9?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x",
"product": {
"name": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x",
"product_id": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.5-4.rhaos4.19.el9?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x",
"product": {
"name": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x",
"product_id": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.5-4.rhaos4.19.el9?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.s390x",
"product": {
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.s390x",
"product_id": "skopeo-2:1.18.1-4.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.18.1-4.rhaos4.19.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x",
"product": {
"name": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x",
"product_id": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.18.1-4.rhaos4.19.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x",
"product": {
"name": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x",
"product_id": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.18.1-4.rhaos4.19.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x",
"product": {
"name": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x",
"product_id": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.18.1-4.rhaos4.19.el9?arch=s390x\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch",
"product": {
"name": "butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch",
"product_id": "butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/butane-redistributable@0.24.0-4.rhaos4.19.el8?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch",
"product": {
"name": "kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch",
"product_id": "kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-abi-stablelists@5.14.0-570.94.1.el9_6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "kernel-doc-0:5.14.0-570.94.1.el9_6.noarch",
"product": {
"name": "kernel-doc-0:5.14.0-570.94.1.el9_6.noarch",
"product_id": "kernel-doc-0:5.14.0-570.94.1.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@5.14.0-570.94.1.el9_6?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-0:0.24.0-4.rhaos4.19.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.aarch64"
},
"product_reference": "butane-0:0.24.0-4.rhaos4.19.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-0:0.24.0-4.rhaos4.19.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.ppc64le"
},
"product_reference": "butane-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-0:0.24.0-4.rhaos4.19.el8.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.s390x"
},
"product_reference": "butane-0:0.24.0-4.rhaos4.19.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-0:0.24.0-4.rhaos4.19.el8.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.src"
},
"product_reference": "butane-0:0.24.0-4.rhaos4.19.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-0:0.24.0-4.rhaos4.19.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.x86_64"
},
"product_reference": "butane-0:0.24.0-4.rhaos4.19.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64"
},
"product_reference": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le"
},
"product_reference": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x"
},
"product_reference": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64"
},
"product_reference": "butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64"
},
"product_reference": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le"
},
"product_reference": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x"
},
"product_reference": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64"
},
"product_reference": "butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch"
},
"product_reference": "butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64"
},
"product_reference": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le"
},
"product_reference": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x"
},
"product_reference": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src"
},
"product_reference": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64"
},
"product_reference": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "8Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64"
},
"product_reference": "openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.aarch64"
},
"product_reference": "buildah-2:1.33.12-4.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le"
},
"product_reference": "buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.s390x"
},
"product_reference": "buildah-2:1.33.12-4.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.src"
},
"product_reference": "buildah-2:1.33.12-4.rhaos4.19.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.33.12-4.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.x86_64"
},
"product_reference": "buildah-2:1.33.12-4.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64"
},
"product_reference": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le"
},
"product_reference": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x"
},
"product_reference": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64"
},
"product_reference": "buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64"
},
"product_reference": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le"
},
"product_reference": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x"
},
"product_reference": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64"
},
"product_reference": "buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64"
},
"product_reference": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le"
},
"product_reference": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x"
},
"product_reference": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64"
},
"product_reference": "buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64"
},
"product_reference": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le"
},
"product_reference": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x"
},
"product_reference": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64"
},
"product_reference": "buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.aarch64"
},
"product_reference": "conmon-3:2.1.12-11.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le"
},
"product_reference": "conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.s390x"
},
"product_reference": "conmon-3:2.1.12-11.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.src"
},
"product_reference": "conmon-3:2.1.12-11.rhaos4.19.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-3:2.1.12-11.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.x86_64"
},
"product_reference": "conmon-3:2.1.12-11.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64"
},
"product_reference": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le"
},
"product_reference": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x"
},
"product_reference": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64"
},
"product_reference": "conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64"
},
"product_reference": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le"
},
"product_reference": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x"
},
"product_reference": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64"
},
"product_reference": "conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64"
},
"product_reference": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le"
},
"product_reference": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x"
},
"product_reference": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src"
},
"product_reference": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64"
},
"product_reference": "cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64"
},
"product_reference": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le"
},
"product_reference": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x"
},
"product_reference": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64"
},
"product_reference": "cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64"
},
"product_reference": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le"
},
"product_reference": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x"
},
"product_reference": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64"
},
"product_reference": "cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-0:1.32.0-4.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.aarch64"
},
"product_reference": "cri-tools-0:1.32.0-4.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-0:1.32.0-4.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.ppc64le"
},
"product_reference": "cri-tools-0:1.32.0-4.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-0:1.32.0-4.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.s390x"
},
"product_reference": "cri-tools-0:1.32.0-4.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-0:1.32.0-4.el9.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.src"
},
"product_reference": "cri-tools-0:1.32.0-4.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-0:1.32.0-4.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.x86_64"
},
"product_reference": "cri-tools-0:1.32.0-4.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-debuginfo-0:1.32.0-4.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.aarch64"
},
"product_reference": "cri-tools-debuginfo-0:1.32.0-4.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le"
},
"product_reference": "cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-debuginfo-0:1.32.0-4.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.s390x"
},
"product_reference": "cri-tools-debuginfo-0:1.32.0-4.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-debuginfo-0:1.32.0-4.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.x86_64"
},
"product_reference": "cri-tools-debuginfo-0:1.32.0-4.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-debugsource-0:1.32.0-4.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.aarch64"
},
"product_reference": "cri-tools-debugsource-0:1.32.0-4.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-debugsource-0:1.32.0-4.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.ppc64le"
},
"product_reference": "cri-tools-debugsource-0:1.32.0-4.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-debugsource-0:1.32.0-4.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.s390x"
},
"product_reference": "cri-tools-debugsource-0:1.32.0-4.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-debugsource-0:1.32.0-4.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.x86_64"
},
"product_reference": "cri-tools-debugsource-0:1.32.0-4.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64"
},
"product_reference": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le"
},
"product_reference": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x"
},
"product_reference": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src"
},
"product_reference": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64"
},
"product_reference": "golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:5.14.0-570.94.1.el9_6.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.src"
},
"product_reference": "kernel-0:5.14.0-570.94.1.el9_6.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch"
},
"product_reference": "kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-core-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-core-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-debug-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-devel-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:5.14.0-570.94.1.el9_6.noarch as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-doc-0:5.14.0-570.94.1.el9_6.noarch"
},
"product_reference": "kernel-doc-0:5.14.0-570.94.1.el9_6.noarch",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-modules-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-tools-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libperf-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "libperf-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libperf-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "libperf-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libperf-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "libperf-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libperf-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "libperf-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libperf-devel-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "libperf-devel-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src"
},
"product_reference": "openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64"
},
"product_reference": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le"
},
"product_reference": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x"
},
"product_reference": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src"
},
"product_reference": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64"
},
"product_reference": "openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64"
},
"product_reference": "openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64"
},
"product_reference": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le"
},
"product_reference": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x"
},
"product_reference": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64"
},
"product_reference": "openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64"
},
"product_reference": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le"
},
"product_reference": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x"
},
"product_reference": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64"
},
"product_reference": "openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64"
},
"product_reference": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le"
},
"product_reference": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x"
},
"product_reference": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64"
},
"product_reference": "openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64"
},
"product_reference": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le"
},
"product_reference": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x"
},
"product_reference": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64"
},
"product_reference": "openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64"
},
"product_reference": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le"
},
"product_reference": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x"
},
"product_reference": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64"
},
"product_reference": "openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64"
},
"product_reference": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le"
},
"product_reference": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x"
},
"product_reference": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64"
},
"product_reference": "openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64"
},
"product_reference": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le"
},
"product_reference": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x"
},
"product_reference": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src"
},
"product_reference": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64"
},
"product_reference": "ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64"
},
"product_reference": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le"
},
"product_reference": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x"
},
"product_reference": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src"
},
"product_reference": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64"
},
"product_reference": "ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le"
},
"product_reference": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x"
},
"product_reference": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src"
},
"product_reference": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64"
},
"product_reference": "ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "perf-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "perf-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "perf-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "python3-perf-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "python3-perf-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "python3-perf-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rtla-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "rtla-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rtla-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "rtla-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rtla-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "rtla-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rtla-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "rtla-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.5-4.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.aarch64"
},
"product_reference": "runc-4:1.2.5-4.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.5-4.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.ppc64le"
},
"product_reference": "runc-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.5-4.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.s390x"
},
"product_reference": "runc-4:1.2.5-4.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.5-4.rhaos4.19.el9.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.src"
},
"product_reference": "runc-4:1.2.5-4.rhaos4.19.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.5-4.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.x86_64"
},
"product_reference": "runc-4:1.2.5-4.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64"
},
"product_reference": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le"
},
"product_reference": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x"
},
"product_reference": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64"
},
"product_reference": "runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64"
},
"product_reference": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le"
},
"product_reference": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x"
},
"product_reference": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64"
},
"product_reference": "runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rv-0:5.14.0-570.94.1.el9_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.aarch64"
},
"product_reference": "rv-0:5.14.0-570.94.1.el9_6.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rv-0:5.14.0-570.94.1.el9_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.ppc64le"
},
"product_reference": "rv-0:5.14.0-570.94.1.el9_6.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rv-0:5.14.0-570.94.1.el9_6.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.s390x"
},
"product_reference": "rv-0:5.14.0-570.94.1.el9_6.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rv-0:5.14.0-570.94.1.el9_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.x86_64"
},
"product_reference": "rv-0:5.14.0-570.94.1.el9_6.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64"
},
"product_reference": "skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le"
},
"product_reference": "skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.s390x"
},
"product_reference": "skopeo-2:1.18.1-4.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.src as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.src"
},
"product_reference": "skopeo-2:1.18.1-4.rhaos4.19.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64"
},
"product_reference": "skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64"
},
"product_reference": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le"
},
"product_reference": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x"
},
"product_reference": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64"
},
"product_reference": "skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64"
},
"product_reference": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le"
},
"product_reference": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x"
},
"product_reference": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64"
},
"product_reference": "skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64"
},
"product_reference": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le"
},
"product_reference": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x"
},
"product_reference": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64"
},
"product_reference": "skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.19"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-52881",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-10-17T14:19:18.652000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.src",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.src",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.src",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-doc-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2404715"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat considers this as an Important flaw since the impact is limited to local attack with minimal privileges in order to jeopardize the environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64"
],
"known_not_affected": [
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.src",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.src",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.src",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-doc-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "RHBZ#2404715",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404715"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-52881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52881"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm",
"url": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/selinux/pull/237",
"url": "https://github.com/opencontainers/selinux/pull/237"
}
],
"release_date": "2025-11-05T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-04T15:54:04+00:00",
"details": "For OpenShift Container Platform 4.19 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/",
"product_ids": [
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3391"
},
{
"category": "workaround",
"details": "Potential mitigations for this issue include:\n\n* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).\n* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.",
"product_ids": [
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.src",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.src",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.src",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-doc-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.src",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.src",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.src",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-doc-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects"
},
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.src",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.src",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.src",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-doc-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64"
],
"known_not_affected": [
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.src",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.src",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.src",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-doc-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-04T15:54:04+00:00",
"details": "For OpenShift Container Platform 4.19 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/",
"product_ids": [
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3391"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.src",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.src",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.src",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-doc-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.src",
"8Base-RHOSE-4.19:butane-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debuginfo-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.aarch64",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.ppc64le",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.s390x",
"8Base-RHOSE-4.19:butane-debugsource-0:0.24.0-4.rhaos4.19.el8.x86_64",
"8Base-RHOSE-4.19:butane-redistributable-0:0.24.0-4.rhaos4.19.el8.noarch",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.s390x",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.src",
"8Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el8.x86_64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:buildah-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-debugsource-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:buildah-tests-debuginfo-2:1.33.12-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:conmon-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debuginfo-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:conmon-debugsource-3:2.1.12-11.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.src",
"9Base-RHOSE-4.19:cri-o-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debuginfo-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.aarch64",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.ppc64le",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.s390x",
"9Base-RHOSE-4.19:cri-o-debugsource-0:1.32.13-5.rhaos4.19.gitcd42990.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.src",
"9Base-RHOSE-4.19:cri-tools-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debuginfo-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.aarch64",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.ppc64le",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.s390x",
"9Base-RHOSE-4.19:cri-tools-debugsource-0:1.32.0-4.el9.x86_64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.src",
"9Base-RHOSE-4.19:golang-github-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.src",
"9Base-RHOSE-4.19:kernel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-abi-stablelists-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debug-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-aarch64-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-debuginfo-common-ppc64le-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-debuginfo-common-s390x-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-debuginfo-common-x86_64-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-doc-0:5.14.0-570.94.1.el9_6.noarch",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-ipaclones-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-64k-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-64k-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debug-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-devel-matched-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-kvm-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-core-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-extra-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-rt-modules-partner-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-selftests-internal-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-tools-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:kernel-tools-libs-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-uki-virt-addons-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:kernel-zfcpdump-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-devel-matched-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-core-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-extra-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-internal-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:kernel-zfcpdump-modules-partner-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:libperf-devel-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:openshift-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.src",
"9Base-RHOSE-4.19:openshift-clients-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-clients-redistributable-0:4.19.0-202602241905.p2.g24755b6.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-hyperkube-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-apiserver-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-controller-manager-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kube-scheduler-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:openshift-kubelet-0:4.19.0-202602241905.p2.g346896b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.aarch64",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.ppc64le",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.s390x",
"9Base-RHOSE-4.19:openshift-prometheus-promu-0:0.16.0-22.gitf6c51c9.el9.x86_64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-aws-ecr-image-credential-provider-0:4.19.0-202602241905.p2.g425c1c5.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.aarch64",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-azure-acr-image-credential-provider-0:4.19.0-202602241905.p2.g7109d6b.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.ppc64le",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.s390x",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.src",
"9Base-RHOSE-4.19:ose-gcp-gcr-image-credential-provider-0:4.19.0-202602241905.p2.gd8d3aeb.assembly.stream.el9.x86_64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:python3-perf-debuginfo-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rtla-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:runc-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debuginfo-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:runc-debugsource-4:1.2.5-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.aarch64",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.ppc64le",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.s390x",
"9Base-RHOSE-4.19:rv-0:5.14.0-570.94.1.el9_6.x86_64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.src",
"9Base-RHOSE-4.19:skopeo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debuginfo-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-debugsource-2:1.18.1-4.rhaos4.19.el9.x86_64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.aarch64",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.ppc64le",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.s390x",
"9Base-RHOSE-4.19:skopeo-tests-2:1.18.1-4.rhaos4.19.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
}
]
}
RHSA-2025:22030
Vulnerability from csaf_redhat - Published: 2025-11-25 08:02 - Updated: 2026-05-07 07:29Summary
Red Hat Security Advisory: podman security update
Severity
Important
Notes
Topic: An update for podman is now available for Red Hat Enterprise Linux 9.6 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.
Security Fix(es):
* runc: container escape and denial of service due to arbitrary write gadgets and procfs write redirects (CVE-2025-52881)
* golang: archive/tar: Unbounded allocation when parsing GNU sparse map (CVE-2025-58183)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.
8.2 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2025:22030
Workaround
Potential mitigations for this issue include:
* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).
* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.
A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
https://access.redhat.com/errata/RHSA-2025:22030
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for podman is now available for Red Hat Enterprise Linux 9.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.\n\nSecurity Fix(es):\n\n* runc: container escape and denial of service due to arbitrary write gadgets and procfs write redirects (CVE-2025-52881)\n\n* golang: archive/tar: Unbounded allocation when parsing GNU sparse map (CVE-2025-58183)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:22030",
"url": "https://access.redhat.com/errata/RHSA-2025:22030"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2404715",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404715"
},
{
"category": "external",
"summary": "2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_22030.json"
}
],
"title": "Red Hat Security Advisory: podman security update",
"tracking": {
"current_release_date": "2026-05-07T07:29:02+00:00",
"generator": {
"date": "2026-05-07T07:29:02+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2025:22030",
"initial_release_date": "2025-11-25T08:02:25+00:00",
"revision_history": [
{
"date": "2025-11-25T08:02:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-11-25T08:02:25+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-07T07:29:02+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.6::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.4.0-15.el9_6.src",
"product": {
"name": "podman-5:5.4.0-15.el9_6.src",
"product_id": "podman-5:5.4.0-15.el9_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.4.0-15.el9_6?arch=src\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.4.0-15.el9_6.aarch64",
"product": {
"name": "podman-5:5.4.0-15.el9_6.aarch64",
"product_id": "podman-5:5.4.0-15.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.4.0-15.el9_6?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.4.0-15.el9_6.aarch64",
"product": {
"name": "podman-plugins-5:5.4.0-15.el9_6.aarch64",
"product_id": "podman-plugins-5:5.4.0-15.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.4.0-15.el9_6?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.4.0-15.el9_6.aarch64",
"product": {
"name": "podman-remote-5:5.4.0-15.el9_6.aarch64",
"product_id": "podman-remote-5:5.4.0-15.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.4.0-15.el9_6?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.4.0-15.el9_6.aarch64",
"product": {
"name": "podman-tests-5:5.4.0-15.el9_6.aarch64",
"product_id": "podman-tests-5:5.4.0-15.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.4.0-15.el9_6?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.4.0-15.el9_6.aarch64",
"product": {
"name": "podman-debugsource-5:5.4.0-15.el9_6.aarch64",
"product_id": "podman-debugsource-5:5.4.0-15.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.4.0-15.el9_6?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.4.0-15.el9_6.aarch64",
"product": {
"name": "podman-debuginfo-5:5.4.0-15.el9_6.aarch64",
"product_id": "podman-debuginfo-5:5.4.0-15.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.4.0-15.el9_6?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64",
"product": {
"name": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64",
"product_id": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.4.0-15.el9_6?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64",
"product": {
"name": "podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64",
"product_id": "podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.4.0-15.el9_6?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64",
"product": {
"name": "podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64",
"product_id": "podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests-debuginfo@5.4.0-15.el9_6?arch=aarch64\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.4.0-15.el9_6.ppc64le",
"product": {
"name": "podman-5:5.4.0-15.el9_6.ppc64le",
"product_id": "podman-5:5.4.0-15.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.4.0-15.el9_6?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.4.0-15.el9_6.ppc64le",
"product": {
"name": "podman-plugins-5:5.4.0-15.el9_6.ppc64le",
"product_id": "podman-plugins-5:5.4.0-15.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.4.0-15.el9_6?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.4.0-15.el9_6.ppc64le",
"product": {
"name": "podman-remote-5:5.4.0-15.el9_6.ppc64le",
"product_id": "podman-remote-5:5.4.0-15.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.4.0-15.el9_6?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.4.0-15.el9_6.ppc64le",
"product": {
"name": "podman-tests-5:5.4.0-15.el9_6.ppc64le",
"product_id": "podman-tests-5:5.4.0-15.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.4.0-15.el9_6?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.4.0-15.el9_6.ppc64le",
"product": {
"name": "podman-debugsource-5:5.4.0-15.el9_6.ppc64le",
"product_id": "podman-debugsource-5:5.4.0-15.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.4.0-15.el9_6?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"product": {
"name": "podman-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"product_id": "podman-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.4.0-15.el9_6?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"product": {
"name": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"product_id": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.4.0-15.el9_6?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"product": {
"name": "podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"product_id": "podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.4.0-15.el9_6?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"product": {
"name": "podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"product_id": "podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests-debuginfo@5.4.0-15.el9_6?arch=ppc64le\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.4.0-15.el9_6.x86_64",
"product": {
"name": "podman-5:5.4.0-15.el9_6.x86_64",
"product_id": "podman-5:5.4.0-15.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.4.0-15.el9_6?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.4.0-15.el9_6.x86_64",
"product": {
"name": "podman-plugins-5:5.4.0-15.el9_6.x86_64",
"product_id": "podman-plugins-5:5.4.0-15.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.4.0-15.el9_6?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.4.0-15.el9_6.x86_64",
"product": {
"name": "podman-remote-5:5.4.0-15.el9_6.x86_64",
"product_id": "podman-remote-5:5.4.0-15.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.4.0-15.el9_6?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.4.0-15.el9_6.x86_64",
"product": {
"name": "podman-tests-5:5.4.0-15.el9_6.x86_64",
"product_id": "podman-tests-5:5.4.0-15.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.4.0-15.el9_6?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.4.0-15.el9_6.x86_64",
"product": {
"name": "podman-debugsource-5:5.4.0-15.el9_6.x86_64",
"product_id": "podman-debugsource-5:5.4.0-15.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.4.0-15.el9_6?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.4.0-15.el9_6.x86_64",
"product": {
"name": "podman-debuginfo-5:5.4.0-15.el9_6.x86_64",
"product_id": "podman-debuginfo-5:5.4.0-15.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.4.0-15.el9_6?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64",
"product": {
"name": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64",
"product_id": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.4.0-15.el9_6?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64",
"product": {
"name": "podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64",
"product_id": "podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.4.0-15.el9_6?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64",
"product": {
"name": "podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64",
"product_id": "podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests-debuginfo@5.4.0-15.el9_6?arch=x86_64\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.4.0-15.el9_6.s390x",
"product": {
"name": "podman-5:5.4.0-15.el9_6.s390x",
"product_id": "podman-5:5.4.0-15.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.4.0-15.el9_6?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.4.0-15.el9_6.s390x",
"product": {
"name": "podman-plugins-5:5.4.0-15.el9_6.s390x",
"product_id": "podman-plugins-5:5.4.0-15.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.4.0-15.el9_6?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.4.0-15.el9_6.s390x",
"product": {
"name": "podman-remote-5:5.4.0-15.el9_6.s390x",
"product_id": "podman-remote-5:5.4.0-15.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.4.0-15.el9_6?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.4.0-15.el9_6.s390x",
"product": {
"name": "podman-tests-5:5.4.0-15.el9_6.s390x",
"product_id": "podman-tests-5:5.4.0-15.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.4.0-15.el9_6?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.4.0-15.el9_6.s390x",
"product": {
"name": "podman-debugsource-5:5.4.0-15.el9_6.s390x",
"product_id": "podman-debugsource-5:5.4.0-15.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.4.0-15.el9_6?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.4.0-15.el9_6.s390x",
"product": {
"name": "podman-debuginfo-5:5.4.0-15.el9_6.s390x",
"product_id": "podman-debuginfo-5:5.4.0-15.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.4.0-15.el9_6?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x",
"product": {
"name": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x",
"product_id": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.4.0-15.el9_6?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x",
"product": {
"name": "podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x",
"product_id": "podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.4.0-15.el9_6?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x",
"product": {
"name": "podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x",
"product_id": "podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests-debuginfo@5.4.0-15.el9_6?arch=s390x\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-5:5.4.0-15.el9_6.noarch",
"product": {
"name": "podman-docker-5:5.4.0-15.el9_6.noarch",
"product_id": "podman-docker-5:5.4.0-15.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-docker@5.4.0-15.el9_6?arch=noarch\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.4.0-15.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.aarch64"
},
"product_reference": "podman-5:5.4.0-15.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.4.0-15.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.ppc64le"
},
"product_reference": "podman-5:5.4.0-15.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.4.0-15.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.s390x"
},
"product_reference": "podman-5:5.4.0-15.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.4.0-15.el9_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.src"
},
"product_reference": "podman-5:5.4.0-15.el9_6.src",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.4.0-15.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.x86_64"
},
"product_reference": "podman-5:5.4.0-15.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.4.0-15.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.aarch64"
},
"product_reference": "podman-debuginfo-5:5.4.0-15.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.4.0-15.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.ppc64le"
},
"product_reference": "podman-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.4.0-15.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.s390x"
},
"product_reference": "podman-debuginfo-5:5.4.0-15.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.4.0-15.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.x86_64"
},
"product_reference": "podman-debuginfo-5:5.4.0-15.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.4.0-15.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.aarch64"
},
"product_reference": "podman-debugsource-5:5.4.0-15.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.4.0-15.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.ppc64le"
},
"product_reference": "podman-debugsource-5:5.4.0-15.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.4.0-15.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.s390x"
},
"product_reference": "podman-debugsource-5:5.4.0-15.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.4.0-15.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.x86_64"
},
"product_reference": "podman-debugsource-5:5.4.0-15.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-5:5.4.0-15.el9_6.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-docker-5:5.4.0-15.el9_6.noarch"
},
"product_reference": "podman-docker-5:5.4.0-15.el9_6.noarch",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.4.0-15.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.aarch64"
},
"product_reference": "podman-plugins-5:5.4.0-15.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.4.0-15.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.ppc64le"
},
"product_reference": "podman-plugins-5:5.4.0-15.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.4.0-15.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.s390x"
},
"product_reference": "podman-plugins-5:5.4.0-15.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.4.0-15.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.x86_64"
},
"product_reference": "podman-plugins-5:5.4.0-15.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64"
},
"product_reference": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le"
},
"product_reference": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x"
},
"product_reference": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64"
},
"product_reference": "podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.4.0-15.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.aarch64"
},
"product_reference": "podman-remote-5:5.4.0-15.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.4.0-15.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.ppc64le"
},
"product_reference": "podman-remote-5:5.4.0-15.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.4.0-15.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.s390x"
},
"product_reference": "podman-remote-5:5.4.0-15.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.4.0-15.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.x86_64"
},
"product_reference": "podman-remote-5:5.4.0-15.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64"
},
"product_reference": "podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le"
},
"product_reference": "podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x"
},
"product_reference": "podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64"
},
"product_reference": "podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.4.0-15.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.aarch64"
},
"product_reference": "podman-tests-5:5.4.0-15.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.4.0-15.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.ppc64le"
},
"product_reference": "podman-tests-5:5.4.0-15.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.4.0-15.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.s390x"
},
"product_reference": "podman-tests-5:5.4.0-15.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.4.0-15.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.x86_64"
},
"product_reference": "podman-tests-5:5.4.0-15.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64"
},
"product_reference": "podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le"
},
"product_reference": "podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x"
},
"product_reference": "podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64"
},
"product_reference": "podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-52881",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-10-17T14:19:18.652000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2404715"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat considers this as an Important flaw since the impact is limited to local attack with minimal privileges in order to jeopardize the environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.src",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-docker-5:5.4.0-15.el9_6.noarch",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "RHBZ#2404715",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404715"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-52881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52881"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm",
"url": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/selinux/pull/237",
"url": "https://github.com/opencontainers/selinux/pull/237"
}
],
"release_date": "2025-11-05T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-11-25T08:02:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.src",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-docker-5:5.4.0-15.el9_6.noarch",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:22030"
},
{
"category": "workaround",
"details": "Potential mitigations for this issue include:\n\n* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).\n* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.",
"product_ids": [
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.src",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-docker-5:5.4.0-15.el9_6.noarch",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.src",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-docker-5:5.4.0-15.el9_6.noarch",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects"
},
{
"cve": "CVE-2025-58183",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-29T23:01:50.573951+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2407258"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted GNU tar pax 1.0 archive with the application using the archive/tar package. Additionally, this issue can cause the Go application to allocate a large amount of memory, eventually leading to an out-of-memory condition and resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.src",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-docker-5:5.4.0-15.el9_6.noarch",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "RHBZ#2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58183"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://go.dev/cl/709861",
"url": "https://go.dev/cl/709861"
},
{
"category": "external",
"summary": "https://go.dev/issue/75677",
"url": "https://go.dev/issue/75677"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI",
"url": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4014",
"url": "https://pkg.go.dev/vuln/GO-2025-4014"
}
],
"release_date": "2025-10-29T22:10:14.376000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-11-25T08:02:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.src",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-docker-5:5.4.0-15.el9_6.noarch",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:22030"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.src",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-docker-5:5.4.0-15.el9_6.noarch",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.src",
"AppStream-9.6.0.Z.EUS:podman-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-debugsource-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-docker-5:5.4.0-15.el9_6.noarch",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-plugins-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-remote-debuginfo-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-5:5.4.0-15.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:podman-tests-debuginfo-5:5.4.0-15.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map"
}
]
}
RHSA-2026:4215
Vulnerability from csaf_redhat - Published: 2026-03-10 15:34 - Updated: 2026-05-07 07:30Summary
Red Hat Security Advisory: Red Hat Quay 3.14.6
Severity
Important
Notes
Topic: Red Hat Quay 3.14.6 is now available with bug fixes.
Details: Quay 3.14.6
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Azure Storage Library Information Disclosure Vulnerability
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in the Requests HTTP library. This vulnerability allows leakage of .netrc credentials to third parties via maliciously crafted URLs that exploit a URL parsing issue.
5.3 (Medium)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in node-forge. This vulnerability allows unauthenticated attackers to bypass downstream cryptographic verifications and security decisions via crafting ASN.1 (Abstract Syntax Notation One) structures to desynchronize schema validations, yielding a semantic divergence.
8.7 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
A flaw was found in qs, a module used for parsing query strings. A remote attacker can exploit an improper input validation vulnerability by sending specially crafted HTTP requests that use bracket notation (e.g., `a[]=value`). This bypasses the `arrayLimit` option, which is designed to limit the size of parsed arrays and prevent resource exhaustion. Successful exploitation can lead to memory exhaustion, causing a Denial of Service (DoS) where the application crashes or becomes unresponsive, making the service unavailable to users.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
A flaw was found in pyjwt. The library uses weak encryption, allowing an attacker to potentially decrypt sensitive data. A network-based attacker can exploit this vulnerability without authentication, possibly resulting in a denial of service or data exposure. This weakness stems from the use of inadequate cryptographic algorithms.
0.0 (None)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A path traversal vulnerability in the Python setuptools library allows attackers with limited system access to write files outside the intended temporary directory by manipulating package download URLs. This flaw bypasses basic filename sanitization and can lead to unauthorized overwrites of important system files, creating opportunities for further compromise. While it doesn't expose data or require user interaction, it poses a high integrity risk and is especially concerning in environments that rely on automated package handling or internal tooling built on setuptools.
7.1 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
No mitigation is currently available that meets Red Hat Product Security’s standards for usability, deployment, applicability, or stability.
A flaw was found in urllib3. The `PoolManager` class allows redirects to be disabled by configuring retries in a specific manner, effectively bypassing intended HTTP redirection behavior. A network attacker can leverage this configuration to manipulate request flows and disrupt service. This bypass occurs through improper handling of retry parameters during PoolManager instantiation. This issue can reult in a denial of service or unintended data exposure due to altered request destinations.
5.3 (Medium)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.
8.2 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Potential mitigations for this issue include:
* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).
* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.
A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A denial of service flaw has been discovered in the Axios npm package. When Axios runs on Node.js and is given a URL with the `data:` scheme, it does not perform HTTP. Instead, its Node http adapter decodes the entire payload into memory (`Buffer`/`Blob`) and returns a synthetic 200 response. This path ignores `maxContentLength` / `maxBodyLength` (which only protect HTTP responses), so an attacker can supply a very large `data:` URI and cause the process to allocate unbounded memory and crash (DoS), even if the caller requested responseType: 'stream'.
5.3 (Medium)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Authlib’s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 “must‑understand” semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed‑language fleets, this enables split‑brain verification and can lead to policy bypass, replay, or privilege escalation.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
A denial of service flaw has been discovered in the python Authlib package. Authlib’s JOSE implementation accepts unbounded JWS/JWT header and signature segments. A remote attacker can craft a token whose base64url‑encoded header or signature spans hundreds of megabytes. During verification, Authlib decodes and parses the full input before it is rejected, driving CPU and memory consumption to hostile levels and enabling denial of service.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Users unable to upgrade may manually enforce input size limits before handing tokens to Authlib and/or use application-level throttling to reduce amplification risk.
A flaw was found in auth0/node-jws. This vulnerability allows improper signature verification via using the HS256 (Hash-based Message Authentication Code using SHA-256) algorithm under specific conditions, where applications use the jws.createVerify() function for HMAC (Keyed-Hash Message Authentication Code) algorithms and user-provided data from the JSON (JavaScript Object Notation) Web Signature protected header or payload in HMAC secret lookup routines.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
A flaw was found in urllib3 Python library that could lead to a Denial of Service condition. A remote, malicious server can exploit this flaw by responding to a client request with an HTTP message that uses an excessive number of chained compression algorithms. This unlimited decompression chain causes the client system to consume a virtually unbounded amount of CPU resources and memory. The high resource usage leads to service disruption, making the application unresponsive.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header (e.g., gzip, deflate, br, or zstd). The library must read compressed data from the network and decompress it until the requested chunk size is met. Any resulting decompressed data that exceeds the requested amount is held in an internal buffer for the next read operation. The decompression logic could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This can result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data; CWE-409) on the client side, even if the application only requested a small chunk of data.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in Fulcio, a free-to-use certificate authority. This vulnerability allows a denial of service (DoS) due to excessive memory allocation when processing a malicious OpenID Connect (OIDC) identity token containing numerous period characters.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression based on the HTTP `Content-Encoding` header (e.g., `gzip`, `deflate`, `br`, or `zstd`). When using the streaming API, the library decompresses only the necessary bytes, enabling partial content consumption. Starting in version 1.22 and prior to version 2.6.3, for HTTP redirect responses, the library would read the entire response body to drain the connection and decompress the content unnecessarily. This decompression occurred even before any read methods were called, and configured read limits did not restrict the amount of decompressed data. As a result, there was no safeguard against decompression bombs. A malicious server could exploit this to trigger excessive resource consumption on the client. Applications and libraries are affected when they stream content from untrusted sources by setting `preload_content=False` when they do not disable redirects. Users should upgrade to at least urllib3 v2.6.3, in which the library does not decode content of redirect responses when `preload_content=False`. If upgrading is not immediately possible, disable redirects by setting `redirect=False` for requests to untrusted source.
7.5 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
A path traversal flaw has been discovered in the python wheel too. The unpack function is vulnerable to file permission modification through mishandling of file permissions after extraction. The logic blindly trusts the filename from the archive header for the chmod operation, even though the extraction process itself might have sanitized the path. Attackers can craft a malicious wheel file that, when unpacked, changes the permissions of critical system files (e.g., /etc/passwd, SSH keys, config files), allowing for Privilege Escalation or arbitrary code execution by modifying now-writable scripts.
7.1 (High)
Vendor Fix
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11458
https://access.redhat.com/errata/RHSA-2026:4215
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Quay 3.14.6 is now available with bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Quay 3.14.6",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:4215",
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47273",
"url": "https://access.redhat.com/security/cve/CVE-2025-47273"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2022-30187",
"url": "https://access.redhat.com/security/cve/CVE-2022-30187"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-34156",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-47081",
"url": "https://access.redhat.com/security/cve/CVE-2024-47081"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-12816",
"url": "https://access.redhat.com/security/cve/CVE-2025-12816"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-15284",
"url": "https://access.redhat.com/security/cve/CVE-2025-15284"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47913",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-50181",
"url": "https://access.redhat.com/security/cve/CVE-2025-50181"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-52881",
"url": "https://access.redhat.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-58183",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-58754",
"url": "https://access.redhat.com/security/cve/CVE-2025-58754"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-59420",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61920",
"url": "https://access.redhat.com/security/cve/CVE-2025-61920"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-65945",
"url": "https://access.redhat.com/security/cve/CVE-2025-65945"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66418",
"url": "https://access.redhat.com/security/cve/CVE-2025-66418"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66471",
"url": "https://access.redhat.com/security/cve/CVE-2025-66471"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66506",
"url": "https://access.redhat.com/security/cve/CVE-2025-66506"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-21441",
"url": "https://access.redhat.com/security/cve/CVE-2026-21441"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-24049",
"url": "https://access.redhat.com/security/cve/CVE-2026-24049"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-45768",
"url": "https://access.redhat.com/security/cve/CVE-2025-45768"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4215.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Quay 3.14.6",
"tracking": {
"current_release_date": "2026-05-07T07:30:26+00:00",
"generator": {
"date": "2026-05-07T07:30:26+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2026:4215",
"initial_release_date": "2026-03-10T15:34:38+00:00",
"revision_history": [
{
"date": "2026-03-10T15:34:38+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-10T15:34:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-07T07:30:26+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Quay 3.14",
"product": {
"name": "Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:quay:3.14::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Quay"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3Aa7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097791"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097298"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3Ac4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097803"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097302"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Afd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1771008628"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3Aaea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1771265622"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Aa4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097327"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-bundle@sha256%3Aef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773101667"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097311"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70?arch=amd64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097621"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097298"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3A2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097302"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1771008628"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1771265622"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097327"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097311"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899?arch=arm64\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097621"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097298"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Aaa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097302"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1771008628"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1771265622"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3Aaad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097327"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097311"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3Ae2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90?arch=ppc64le\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097621"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"product_id": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3A14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097298"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"product_id": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Ac33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097302"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Abec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1771008628"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"product_id": "registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-builder-rhel8@sha256%3A78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1771265622"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"product": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"product_id": "registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clair-rhel8@sha256%3A698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097327"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"product_id": "registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-operator-rhel8@sha256%3A420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097311"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"product": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"product_id": "registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/quay-rhel8@sha256%3A51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4?arch=s390x\u0026repository_url=registry.redhat.io/quay\u0026tag=1773097621"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le"
},
"product_reference": "registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64 as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"relates_to_product_reference": "Red Hat Quay 3.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le as a component of Red Hat Quay 3.14",
"product_id": "Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
},
"product_reference": "registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le",
"relates_to_product_reference": "Red Hat Quay 3.14"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-30187",
"discovery_date": "2025-05-06T16:30:59.189000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"notes": [
{
"category": "description",
"text": "Azure Storage Library Information Disclosure Vulnerability",
"title": "Vulnerability description"
},
{
"category": "other",
"text": "Red Hat Product Security has determined that this vulnerability does not affect any currently supported Red Hat product. This assessment may evolve based on further analysis and discovery. For more information about this vulnerability and the products it affects, please see the linked references.",
"title": "Statement"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-30187"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-30187",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30187"
}
],
"release_date": "2022-07-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Azure Storage: Azure Storage Library Information Disclosure Vulnerability"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-47081",
"cwe": {
"id": "CWE-522",
"name": "Insufficiently Protected Credentials"
},
"discovery_date": "2025-06-09T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2371272"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Requests HTTP library. This vulnerability allows leakage of .netrc credentials to third parties via maliciously crafted URLs that exploit a URL parsing issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "requests: Requests vulnerable to .netrc credentials leak via malicious URLs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47081"
},
{
"category": "external",
"summary": "RHBZ#2371272",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2371272"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47081"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47081",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47081"
},
{
"category": "external",
"summary": "http://seclists.org/fulldisclosure/2025/Jun/2",
"url": "http://seclists.org/fulldisclosure/2025/Jun/2"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2025/06/03/11",
"url": "http://www.openwall.com/lists/oss-security/2025/06/03/11"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2025/06/03/9",
"url": "http://www.openwall.com/lists/oss-security/2025/06/03/9"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2025/06/04/1",
"url": "http://www.openwall.com/lists/oss-security/2025/06/04/1"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2025/06/04/6",
"url": "http://www.openwall.com/lists/oss-security/2025/06/04/6"
},
{
"category": "external",
"summary": "https://github.com/psf/requests/commit/96ba401c1296ab1dda74a2365ef36d88f7d144ef",
"url": "https://github.com/psf/requests/commit/96ba401c1296ab1dda74a2365ef36d88f7d144ef"
},
{
"category": "external",
"summary": "https://github.com/psf/requests/pull/6965",
"url": "https://github.com/psf/requests/pull/6965"
},
{
"category": "external",
"summary": "https://github.com/psf/requests/security/advisories/GHSA-9hjg-9r4m-mvj7",
"url": "https://github.com/psf/requests/security/advisories/GHSA-9hjg-9r4m-mvj7"
},
{
"category": "external",
"summary": "https://requests.readthedocs.io/en/latest/api/#requests.Session.trust_env",
"url": "https://requests.readthedocs.io/en/latest/api/#requests.Session.trust_env"
},
{
"category": "external",
"summary": "https://seclists.org/fulldisclosure/2025/Jun/2",
"url": "https://seclists.org/fulldisclosure/2025/Jun/2"
}
],
"release_date": "2025-06-09T17:57:47.731000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "requests: Requests vulnerable to .netrc credentials leak via malicious URLs"
},
{
"cve": "CVE-2025-12816",
"cwe": {
"id": "CWE-179",
"name": "Incorrect Behavior Order: Early Validation"
},
"discovery_date": "2025-11-25T20:01:05.875196+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2417097"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in node-forge. This vulnerability allows unauthenticated attackers to bypass downstream cryptographic verifications and security decisions via crafting ASN.1 (Abstract Syntax Notation One) structures to desynchronize schema validations, yielding a semantic divergence.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-forge: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat products due to an interpretation conflict in the node-forge library. An unauthenticated attacker could exploit this flaw by crafting malicious ASN.1 structures, leading to a bypass of cryptographic verifications and security decisions in affected applications. This impacts various Red Hat products that utilize node-forge for cryptographic operations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-12816"
},
{
"category": "external",
"summary": "RHBZ#2417097",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2417097"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-12816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12816"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-12816",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12816"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge",
"url": "https://github.com/digitalbazaar/forge"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge/pull/1124",
"url": "https://github.com/digitalbazaar/forge/pull/1124"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq",
"url": "https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq"
},
{
"category": "external",
"summary": "https://kb.cert.org/vuls/id/521113",
"url": "https://kb.cert.org/vuls/id/521113"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/node-forge",
"url": "https://www.npmjs.com/package/node-forge"
}
],
"release_date": "2025-11-25T19:15:50.243000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "node-forge: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications"
},
{
"cve": "CVE-2025-15284",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-12-29T23:00:58.541337+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2425946"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in qs, a module used for parsing query strings. A remote attacker can exploit an improper input validation vulnerability by sending specially crafted HTTP requests that use bracket notation (e.g., `a[]=value`). This bypasses the `arrayLimit` option, which is designed to limit the size of parsed arrays and prevent resource exhaustion. Successful exploitation can lead to memory exhaustion, causing a Denial of Service (DoS) where the application crashes or becomes unresponsive, making the service unavailable to users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "qs: qs: Denial of Service via improper input validation in array parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat products that utilize the `qs` module for parsing query strings, particularly when processing user-controlled input with bracket notation. The `arrayLimit` option, intended to prevent resource exhaustion, is bypassed when bracket notation (`a[]=value`) is used, allowing a remote attacker to cause a denial of service through memory exhaustion. This can lead to application crashes or unresponsiveness, making the service unavailable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-15284"
},
{
"category": "external",
"summary": "RHBZ#2425946",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2425946"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-15284",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-15284"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-15284",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15284"
},
{
"category": "external",
"summary": "https://github.com/ljharb/qs/commit/3086902ecf7f088d0d1803887643ac6c03d415b9",
"url": "https://github.com/ljharb/qs/commit/3086902ecf7f088d0d1803887643ac6c03d415b9"
},
{
"category": "external",
"summary": "https://github.com/ljharb/qs/security/advisories/GHSA-6rw7-vpxm-498p",
"url": "https://github.com/ljharb/qs/security/advisories/GHSA-6rw7-vpxm-498p"
}
],
"release_date": "2025-12-29T22:56:45.240000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "qs: qs: Denial of Service via improper input validation in array parsing"
},
{
"cve": "CVE-2025-45768",
"discovery_date": "2025-07-31T21:01:30.698283+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in pyjwt. The library uses weak encryption, allowing an attacker to potentially decrypt sensitive data. A network-based attacker can exploit this vulnerability without authentication, possibly resulting in a denial of service or data exposure. This weakness stems from the use of inadequate cryptographic algorithms.",
"title": "Vulnerability description"
},
{
"category": "other",
"text": "This CVE has been disputed by the PyJWT. The developers of PyJWT confirm that this issue is not a flaw in the library\u0027s function but rather a potential risk if an application developer chooses to use weak, short cryptographic keys.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-45768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-45768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-45768"
}
],
"release_date": "2025-07-31T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 0.0,
"baseSeverity": "NONE",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "pyjwt: pyjwt Weak Encryption Vulnerability"
},
{
"cve": "CVE-2025-47273",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-05-17T16:00:41.145177+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2366982"
}
],
"notes": [
{
"category": "description",
"text": "A path traversal vulnerability in the Python setuptools library allows attackers with limited system access to write files outside the intended temporary directory by manipulating package download URLs. This flaw bypasses basic filename sanitization and can lead to unauthorized overwrites of important system files, creating opportunities for further compromise. While it doesn\u0027t expose data or require user interaction, it poses a high integrity risk and is especially concerning in environments that rely on automated package handling or internal tooling built on setuptools.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "setuptools: Path Traversal Vulnerability in setuptools PackageIndex",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security has rated this vulnerability \"Moderate\" based on the impact of the damage caused by a successful exploitation and the pre-requisites.\n\n* Exploitation requires that the attacker have limited code execution access to a Python environment where they can trigger the vulnerable PackageIndex.download() function\u2014this might be via a script, plugin, or automated job. Full admin rights aren\u0027t needed but a user with no access at all will be unable to exploit this vulnerability.\n* The vulnerability impacts the integrity of the system within the same security boundary\u2014it does not enable access or compromise across trust boundaries (e.g., from one container to another or from user space to kernel).\n* Successful exploitation only allows the attacker to \"create\" new files. The vulnerability does not provide access to existing files and by an extension to any confidential information. \n* Arbitrary file writes can overwrite critical config files, executables, or scripts. This can lead to persistent code execution, system misconfiguration, or unauthorized behavior, especially in automated environments. While overwriting critical files could theoretically lead to service disruption, the vulnerability in isolation does not inherently cause denial of service. The exploit doesn\u0027t target availability directly, and in many cases, systems may continue running.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47273"
},
{
"category": "external",
"summary": "RHBZ#2366982",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2366982"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47273"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47273",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47273"
},
{
"category": "external",
"summary": "https://github.com/pypa/setuptools/blob/6ead555c5fb29bc57fe6105b1bffc163f56fd558/setuptools/package_index.py#L810C1-L825C88",
"url": "https://github.com/pypa/setuptools/blob/6ead555c5fb29bc57fe6105b1bffc163f56fd558/setuptools/package_index.py#L810C1-L825C88"
},
{
"category": "external",
"summary": "https://github.com/pypa/setuptools/commit/250a6d17978f9f6ac3ac887091f2d32886fbbb0b",
"url": "https://github.com/pypa/setuptools/commit/250a6d17978f9f6ac3ac887091f2d32886fbbb0b"
},
{
"category": "external",
"summary": "https://github.com/pypa/setuptools/issues/4946",
"url": "https://github.com/pypa/setuptools/issues/4946"
},
{
"category": "external",
"summary": "https://github.com/pypa/setuptools/security/advisories/GHSA-5rjg-fvgr-3xxf",
"url": "https://github.com/pypa/setuptools/security/advisories/GHSA-5rjg-fvgr-3xxf"
}
],
"release_date": "2025-05-17T15:46:11.399000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "setuptools: Path Traversal Vulnerability in setuptools PackageIndex"
},
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-50181",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"discovery_date": "2025-06-19T02:00:42.866992+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2373799"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in urllib3. The `PoolManager` class allows redirects to be disabled by configuring retries in a specific manner, effectively bypassing intended HTTP redirection behavior. A network attacker can leverage this configuration to manipulate request flows and disrupt service. This bypass occurs through improper handling of retry parameters during PoolManager instantiation. This issue can reult in a denial of service or unintended data exposure due to altered request destinations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3 redirects are not disabled when retries are disabled on PoolManager instantiation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in the urllib3 library where it could be tricked into disclosing the Proxy-Authorization header to a destination server when a CONNECT tunnel is used. An attacker can set up a malicious redirect to a crafted URL, which, when followed by the client application, will cause the Proxy-Authorization header to be sent to the attacker-controlled server. This leaks sensitive credentials for the proxy. The impact is primarily on confidentiality. While urllib3 is a ubiquitous component, the vulnerability requires a specific scenario where a user is connecting to a proxy that requires authentication and is redirected to a malicious endpoint. This lowers the exploitability compared to a direct, unauthenticated remote attack, thus, warranting a Moderate severity rating.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-50181"
},
{
"category": "external",
"summary": "RHBZ#2373799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2373799"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50181"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-50181",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-50181"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/f05b1329126d5be6de501f9d1e3e36738bc08857",
"url": "https://github.com/urllib3/urllib3/commit/f05b1329126d5be6de501f9d1e3e36738bc08857"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-pq67-6m6q-mj2v",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-pq67-6m6q-mj2v"
}
],
"release_date": "2025-06-19T01:08:00.340000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "urllib3: urllib3 redirects are not disabled when retries are disabled on PoolManager instantiation"
},
{
"cve": "CVE-2025-52881",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-10-17T14:19:18.652000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2404715"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation applied for CVE-2019-16884 was fairly limited and effectively only caused runc to verify that when we write LSM labels that those labels are actual procfs files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat considers this as an Important flaw since the impact is limited to local attack with minimal privileges in order to jeopardize the environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-52881"
},
{
"category": "external",
"summary": "RHBZ#2404715",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2404715"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-52881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52881"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52881"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm",
"url": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm"
},
{
"category": "external",
"summary": "https://github.com/opencontainers/selinux/pull/237",
"url": "https://github.com/opencontainers/selinux/pull/237"
}
],
"release_date": "2025-11-05T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "workaround",
"details": "Potential mitigations for this issue include:\n\n* Using rootless containers, as doing so will block most of the inadvertent writes (runc would run with reduced privileges, making attempts to write to procfs files ineffective).\n* Based on our analysis, neither AppArmor or SELinux can protect against the full version of the redirected write attack. The container runtime is generally privileged enough to write to arbitrary procfs files, which is more than sufficient to cause a container breakout.",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects"
},
{
"cve": "CVE-2025-58183",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-29T23:01:50.573951+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2407258"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted GNU tar pax 1.0 archive with the application using the archive/tar package. Additionally, this issue can cause the Go application to allocate a large amount of memory, eventually leading to an out-of-memory condition and resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "RHBZ#2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58183"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://go.dev/cl/709861",
"url": "https://go.dev/cl/709861"
},
{
"category": "external",
"summary": "https://go.dev/issue/75677",
"url": "https://go.dev/issue/75677"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI",
"url": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4014",
"url": "https://pkg.go.dev/vuln/GO-2025-4014"
}
],
"release_date": "2025-10-29T22:10:14.376000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map"
},
{
"cve": "CVE-2025-58754",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-09-12T02:00:53.897605+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2394735"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the Axios npm package. When Axios runs on Node.js and is given a URL with the `data:` scheme, it does not perform HTTP. Instead, its Node http adapter decodes the entire payload into memory (`Buffer`/`Blob`) and returns a synthetic 200 response.\nThis path ignores `maxContentLength` / `maxBodyLength` (which only protect HTTP responses), so an attacker can supply a very large `data:` URI and cause the process to allocate unbounded memory and crash (DoS), even if the caller requested responseType: \u0027stream\u0027.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios DoS via lack of data size check",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Availability impact is limited to the application which bundles axios and not the host Red Hat system.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58754"
},
{
"category": "external",
"summary": "RHBZ#2394735",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2394735"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58754"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58754",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58754"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/commit/945435fc51467303768202250debb8d4ae892593",
"url": "https://github.com/axios/axios/commit/945435fc51467303768202250debb8d4ae892593"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/pull/7011",
"url": "https://github.com/axios/axios/pull/7011"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases/tag/v1.12.0",
"url": "https://github.com/axios/axios/releases/tag/v1.12.0"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-4hjh-wcwx-xvwj",
"url": "https://github.com/axios/axios/security/advisories/GHSA-4hjh-wcwx-xvwj"
}
],
"release_date": "2025-09-12T01:16:40.513000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "axios: Axios DoS via lack of data size check"
},
{
"cve": "CVE-2025-59420",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2025-09-22T18:01:35.379361+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2397460"
}
],
"notes": [
{
"category": "description",
"text": "Authlib\u2019s JWS verification accepts tokens that declare unknown critical header parameters (crit), violating RFC 7515 \u201cmust\u2011understand\u201d semantics. An attacker can craft a signed token with a critical header (for example, bork or cnf) that strict verifiers reject but Authlib accepts. In mixed\u2011language fleets, this enables split\u2011brain verification and can lead to policy bypass, replay, or privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib RFC violation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-59420"
},
{
"category": "external",
"summary": "RHBZ#2397460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2397460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-59420",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59420"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-59420"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df",
"url": "https://github.com/authlib/authlib/commit/6b1813e4392eb7c168c276099ff7783b176479df"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-9ggr-2464-2j32"
}
],
"release_date": "2025-09-22T17:28:53.869000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "authlib: Authlib RFC violation"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"known_not_affected": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-10T15:34:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11458",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:4215"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:fd57da947aee5538acc22c9bbc537eeed955334f7bcce8683fe6eb325847812f_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:00c8d4e64fd7246b51a23807d56421a63c5cb201565e50fcdd70623d208b4c80_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:47b66c0f25e0be3b5e533422d5591baadc5f7653ec4c97d8398d6cc3451f5ed9_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:78d3fada736cdb40efb692c6eede03c9a380e3d44e3b4ca338bf3676e1c1b745_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-rhel8@sha256:aea11bfd317b3c0d414f7c1ca5c7768ebbe2bf984d48f2960ec309463c383ced_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-bundle@sha256:a7f0bcbf21692be996d8beba4228d51d047237a3dad43a5d61e1a379742b5101_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:14d025b088b84df61332fd60382161cccfae6fc7310cdd7fd0a96432a1dcbb0b_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:191c87e2d307ccc97699cf0ff4b7217ca6d4c6fd51b01e93abc423b7b3b688ba_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:19afededc1a3f54a6c3d85c4e0e35043e1b0d2074f0d983e3393c4694348ae58_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-container-security-operator-rhel8@sha256:7a15aecd0b757726ec8dd1fc2d8d0e611fba1b77ce7857604bfa56314bc5189a_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-bundle@sha256:ef354fd2be18bcce59d2880843ad295ac8610c1d2dd1565a941ab18e77eec27e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:420be03e698e066bbaa96c7334e1a6b14793836f437b53ee1d961414115622c4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:6e421e848fac1ffd749e1761acd51d41419d73a55e610170e3c6c53294ec061e_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:7d3344ce19373fdf5cc721f0abbb2c2ee87d079b96d0dd4c7350621cfa57a322_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-operator-rhel8@sha256:91844fb97cac49e78054bd9547222aadf1762f1c0fd05feb0b86f9d94787512b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:05cc4b4410de27e32897492effb21362d8c1bc8cc56e9408fc9a19f9f3149899_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:225e2bed98b80e753ba2eca6b121a7295b20633b25b8098b7dce66efc2bc1b70_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:51881be0039c3a7df9ad588060955dc3f0ea6eef28a35ebc4fe146e73316e2a4_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-rhel8@sha256:e2a2347a1ed65e94a13fd0330e7922339096d725733071a1f9eb4c413be5eb90_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-61920",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-10T20:01:12.833962+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:1ec5bd4c50f080096a3579e498ac9301acf3927834f7773996911db8e11d2279_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:698a1ae2e5e2669d5a328d99deb4b8c67f2d7dd03d878600ce13f8dfb154fcf6_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:a4037bacb4f26a947e511da97519fe318b986e31ef4689a2ec7499789096dc2b_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/clair-rhel8@sha256:aad14ca0de55666d13c1a12511cea2c071d0a1c7c5e1b9ed9d7c70d157225293_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-bundle@sha256:c4133c994168c764a87f34a39a2fa66fa0c04c0c186781cf024e5e41f62280d0_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:1ff62272e3139cfc7abf3511e706bcdffeabfbbcacfee18508bd629cea20fd78_amd64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:2f0c540c7269e27be3e0d4f988a4d19371a80b8b0684cff74d21851608636c88_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:aa1b44b1ee74a3ba6aa63eef2003077b1a9a5c067a6aa590eeb8fe30a93fe60b_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-bridge-operator-rhel8@sha256:c33a90cf0b733a8fd0514f9c6cd53c22ff307c15b80c582736ab88ed26e967f7_s390x",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:0a79d63a51f959c7704662cf7370da2bd76cc22dd13acefe6eebe6b38881f98a_ppc64le",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:9e2fd6eb656ea932d83f001922aa46e7cef7796c404dbe7ab6393820149941a8_arm64",
"Red Hat Quay 3.14:registry.redhat.io/quay/quay-builder-qemu-rhcos-rhel8@sha256:bec2f493457c5fec6af7309d9cc09c4a04632b9050b03720861cb05ac77d1d10_s390x",
"Red Hat Quay 3.14:registry.r